Wind River Support Network

HomeDefectsLIN6-7102

Fixed

LIN6-7102 : Security Advisory - screen - CVE-2009-1215

Created: Apr 13, 2014 Updated: Dec 3, 2018

Resolved Date: Apr 13, 2014

Previous ID: LIN2-24433

Found In Version: 6.0

Fix Version: 6.0.0.6

Severity: Severe

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1215

Race condition in GNU screen 4.0.3 allows local users to create or overwrite arbitrary files via a symlink attack on the /tmp/screen-exchange temporary file.

Steps to Reproduce

Unknown

Other Downloads

Wind River Linux 2.0 UP 4 Cumulative patch for screen
Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38