lintian 1.23 and earlier removes the working directory even if it was not created by lintian, which may allow local users to delete arbitrary files or directories via a symlink attack.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Lintian | Debian | 1.2_0.17.1 (including) | 1.2_0.17.1 (including) |
Lintian | Ubuntu | dapper | * |
Lintian | Ubuntu | devel | * |
Lintian | Ubuntu | edgy | * |
Lintian | Ubuntu | feisty | * |