Package: aptitude
Version: 0.4.11.2-1
Severity: serious
Since /var/lock is installed with mode 1777 on debian systems, if
/var/lock/aptitude does not yet exist, a normal user can symlink it to an
arbitrary location on the filesystem. Aptitude them attempts to open
this file with mode O_TRUNC,
reassign 482476 apt 0.7.11
title Security: Symlink traversal in GetLock() can truncate arbitrary files
thanks
Since the function at fault is in apt's libapt-pkg, not aptitude itself,
reassigning to APT. See below for bug description. I am currently
testing a patch for this and will follow up
2 matches
Mail list logo
