Common Vulnerabilities and Exposures assigned an identifier CVE-2008-0806 to the following vulnerability: wyrd 1.4.3b allows local users to overwrite arbitrary files via a symlink attack on the wyrd-tmp.[USERID] temporary file. References: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=466382 http://www.securityfocus.com/bid/27848 http://secunia.com/advisories/29009
wyrd-1.4.3b-1.fc8 has been submitted as an update for Fedora 8
wyrd-1.4.3b-1.fc7 has been submitted as an update for Fedora 7
wyrd-1.4.3b-1.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.
wyrd-1.4.3b-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in: Fedora: https://admin.fedoraproject.org/updates/F7/FEDORA-2008-1963 https://admin.fedoraproject.org/updates/F8/FEDORA-2008-1986