CVE-2014-4038: ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a symlink attack related to (1) rtas_errd/diag_support.c and /tmp/get_dt_files, (2)…

medium4.4CVSS 3.1

AVLACMAuNCPIPAP

ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a symlink attack related to (1) rtas_errd/diag_support.c and /tmp/get_dt_files, (2) scripts/ppc64_diag_mkrsrc and /tmp/diagSEsnap/snapH.tar.gz, or (3) lpd/test/lpd_ela_test.sh and /var/tmp/ras.

Affected

7 ranges

Vendor	Product	Version range	Fixed in
debian	ppc64-diag	< ppc64-diag 2.7.1-5 (bookworm)	ppc64-diag 2.7.1-5 (bookworm)
ppc64-diag_project	ppc64-diag	—	—
ppc64-diag_project	ppc64-diag	>= 0 < 2.7.1-5	2.7.1-5
ppc64-diag_project	ppc64-diag	>= 0 < 2.7.1-5	2.7.1-5
redhat	enterprise_linux_server	—	—
redhat	enterprise_linux_server	—	—
suse	linux_enterprise_server	—	—

CVSS provenance

nvd4.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P

osv4.4MEDIUM