Multiple symlink vulnerabilities in portupgrade before 20041226_2 in FreeBSD allow local users to (1) overwrite arbitrary files and possibly replace packages to execute arbitrary code via pkg_fetch, (2) overwrite arbitrary files via temporary files when portupgrade upgrades a port or package, or (3) create arbitrary zero-byte files via the pkgdb.fixme temporary file.
Software | From | Fixed in |
---|---|---|
freebsd / freebsd | 4.0 | 4.0.x |
freebsd / freebsd | 4.0-alpha | 4.0-alpha.x |
freebsd / freebsd | 4.0-releng | 4.0-releng.x |
freebsd / freebsd | 4.1 | 4.1.x |
freebsd / freebsd | 4.1.1 | 4.1.1.x |
freebsd / freebsd | 4.1.1-release | 4.1.1-release.x |
freebsd / freebsd | 4.1.1-stable | 4.1.1-stable.x |
freebsd / freebsd | 4.10 | 4.10.x |
freebsd / freebsd | 4.10-release | 4.10-release.x |
freebsd / freebsd | 4.10-releng | 4.10-releng.x |
freebsd / freebsd | 4.11-stable | 4.11-stable.x |
freebsd / freebsd | 4.2 | 4.2.x |
freebsd / freebsd | 4.2-stable | 4.2-stable.x |
freebsd / freebsd | 4.3 | 4.3.x |
freebsd / freebsd | 4.3-release | 4.3-release.x |
freebsd / freebsd | 4.3-release_p38 | 4.3-release_p38.x |
freebsd / freebsd | 4.3-releng | 4.3-releng.x |
freebsd / freebsd | 4.3-stable | 4.3-stable.x |
freebsd / freebsd | 4.4 | 4.4.x |
freebsd / freebsd | 4.4-release_p42 | 4.4-release_p42.x |
freebsd / freebsd | 4.4-releng | 4.4-releng.x |
freebsd / freebsd | 4.4-stable | 4.4-stable.x |
freebsd / freebsd | 4.5 | 4.5.x |
freebsd / freebsd | 4.5-release | 4.5-release.x |
freebsd / freebsd | 4.5-release_p32 | 4.5-release_p32.x |
freebsd / freebsd | 4.5-releng | 4.5-releng.x |
freebsd / freebsd | 4.5-stable | 4.5-stable.x |
freebsd / freebsd | 4.6 | 4.6.x |
freebsd / freebsd | 4.6-release | 4.6-release.x |
freebsd / freebsd | 4.6-release_p20 | 4.6-release_p20.x |
freebsd / freebsd | 4.6-releng | 4.6-releng.x |
freebsd / freebsd | 4.6-stable | 4.6-stable.x |
freebsd / freebsd | 4.6.2 | 4.6.2.x |
freebsd / freebsd | 4.7 | 4.7.x |
freebsd / freebsd | 4.7-release | 4.7-release.x |
freebsd / freebsd | 4.7-release_p17 | 4.7-release_p17.x |
freebsd / freebsd | 4.7-releng | 4.7-releng.x |
freebsd / freebsd | 4.7-stable | 4.7-stable.x |
freebsd / freebsd | 4.8 | 4.8.x |
freebsd / freebsd | 4.8-pre-release | 4.8-pre-release.x |
freebsd / freebsd | 4.8-release_p6 | 4.8-release_p6.x |
freebsd / freebsd | 4.8-releng | 4.8-releng.x |
freebsd / freebsd | 4.9 | 4.9.x |
freebsd / freebsd | 4.9-pre-release | 4.9-pre-release.x |
freebsd / freebsd | 4.9-releng | 4.9-releng.x |
freebsd / freebsd | 5.0 | 5.0.x |
freebsd / freebsd | 5.0-alpha | 5.0-alpha.x |
freebsd / freebsd | 5.0-release_p14 | 5.0-release_p14.x |
freebsd / freebsd | 5.0-releng | 5.0-releng.x |
freebsd / freebsd | 5.1 | 5.1.x |
freebsd / freebsd | 5.1-alpha | 5.1-alpha.x |
freebsd / freebsd | 5.1-release | 5.1-release.x |
freebsd / freebsd | 5.1-release_p5 | 5.1-release_p5.x |
freebsd / freebsd | 5.1-releng | 5.1-releng.x |
freebsd / freebsd | 5.2 | 5.2.x |
freebsd / freebsd | 5.2.1-release | 5.2.1-release.x |
freebsd / freebsd | 5.2.1-releng | 5.2.1-releng.x |
freebsd / freebsd | 5.3 | 5.3.x |
freebsd / freebsd | 5.3-release | 5.3-release.x |
freebsd / freebsd | 5.3-releng | 5.3-releng.x |
freebsd / freebsd | 5.3-stable | 5.3-stable.x |
freebsd / freebsd | 5.4-pre-release | 5.4-pre-release.x |
freebsd / freebsd | 5.4-release | 5.4-release.x |