readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.
The product, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the product to operate on unauthorized files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Red Hat Enterprise Linux 8 | RedHat | socat-0:1.7.4.1-2.el8_10 | * |
Red Hat Enterprise Linux 9 | RedHat | socat-0:1.7.4.1-6.el9_6.1 | * |
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions | RedHat | socat-0:1.7.4.1-5.el9_2.2 | * |
Red Hat Enterprise Linux 9.4 Extended Update Support | RedHat | socat-0:1.7.4.1-5.el9_4.3 | * |
Socat | Ubuntu | focal | * |
Socat | Ubuntu | oracular | * |
Socat | Ubuntu | trusty/esm | * |