/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and...
High severity
Unreviewed
Published
May 14, 2022
to the GitHub Advisory Database
•
Updated Feb 2, 2023
Description
Published by the National Vulnerability Database
Dec 9, 2008
Published to the GitHub Advisory Database
May 14, 2022
Last updated
Feb 2, 2023
/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably other Linux distributions, allows local users in the utmp group to overwrite arbitrary files via a symlink attack on a temporary file referenced in a line (aka ut_line) field in a utmp entry.
References