CVE-2008-1614
Published: 2 April 2008
suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.
Priority
Status
Package | Release | Status |
---|---|---|
suphp Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Released
(0.6.2-2ubuntu1)
|
|
intrepid |
Released
(0.6.2-2ubuntu1)
|
|
jaunty |
Released
(0.6.2-2ubuntu1)
|
|
karmic |
Released
(0.6.2-2ubuntu1)
|
|
upstream |
Released
(0.6.3)
|