Red Hat Customer Portal

Skip to main content

CVE-2007-5495

sealert in setroubleshoot 2.0.5 allows local users to overwrite arbitrary files via a symlink attack on the sealert.log temporary file.

Details Source

Mitre

Public Date

2008-05-21 00:00:00

Impact

Low

Bugzilla

CVE-2007-5495 setroubleshoot insecure logging

Bugzilla ID

288 221

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 RHSA-2008:0061 2008-05-20

Affected Packages State

Platform Package State
Red Hat Enterprise Linux version 5 setroubleshoot 2.0.5-3.el5 Fixed
Red Hat Enterprise Linux version 5 setroubleshoot-plugins 2.0.4-2.el5 Fixed