Red Hat Customer Portal

Skip to main content

CVE-2007-5495

Impact:
Low
Public Date:
2008-05-21
Bugzilla:
288221: CVE-2007-5495 setroubleshoot insecure logging

The MITRE CVE dictionary describes this issue as:

sealert in setroubleshoot 2.0.5 allows local users to overwrite arbitrary files via a symlink attack on the sealert.log temporary file.

Find out more about CVE-2007-5495 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (setroubleshoot-plugins) RHSA-2008:0061 2008-05-20

Affected Packages State

Platform Package State
Red Hat Enterprise Linux version 5 setroubleshoot 2.0.5-3.el5 Fixed
Red Hat Enterprise Linux version 5 setroubleshoot-plugins 2.0.4-2.el5 Fixed