Total vulnerabilities in the database
The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps before 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files.
| Software | From | Fixed in |
|---|---|---|
| gnu / a2ps | 4.13b | 4.13b.x |
| gnu / a2ps | 4.13 | 4.13.x |
| turbolinux / turbolinux_server | 7.0 | 7.0.x |
| turbolinux / turbolinux_workstation | 7.0 | 7.0.x |
| turbolinux / turbolinux_home | - | - |
| turbolinux / turbolinux_workstation | 8.0 | 8.0.x |
| turbolinux / turbolinux_server | 8.0 | 8.0.x |