Common Vulnerabilities and Exposures assigned an identifier CVE-2008-4639 to the following vulnerability: jhead.c in Matthias Wandel jhead before 2.84 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. References: https://bugs.launchpad.net/ubuntu/+source/jhead/+bug/271020 http://www.openwall.com/lists/oss-security/2008/10/15/5 http://www.openwall.com/lists/oss-security/2008/10/15/6 http://www.openwall.com/lists/oss-security/2008/10/16/3
This issue was addressed in: Fedora: https://admin.fedoraproject.org/updates/F8/FEDORA-2008-8941 https://admin.fedoraproject.org/updates/F9/FEDORA-2008-8928