init in initramfs-tools 0.92f allows local users to overwrite arbitrary files via a symlink attack on the /tmp/initramfs.debug temporary file. NOTE: the vendor disputes this vulnerability, stating that "init is [used in] a single-user context; there's no possibility that this is exploitable.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2008-11-07T19:00:00Z
Updated: 2024-09-16T22:09:49.164Z
Reserved: 2008-11-07T00:00:00Z
Link: CVE-2008-4996
Vulnrichment
No data.
NVD
Status : Modified
Published: 2008-11-07T19:36:23.963
Modified: 2024-08-07T11:15:32.543
Link: CVE-2008-4996
Redhat
No data.