dialog /tmp File Race Condition Vulnerability

Bugtraq ID:	2151
Class:	Race Condition Error
CVE:
Remote:	No
Local:	Yes
Published:	Dec 25 2000 12:00AM
Updated:	Dec 25 2000 12:00AM
Credit:	This vulnerability was announced in a Debian Security Advisory on December 25, 2000.
Vulnerable:	Turbolinux Turbolinux Workstation 6.1 Turbolinux Turbolinux Server 6.5 Turbolinux Turbolinux 6.0.5 Turbolinux Turbolinux 6.0.4 Turbolinux Turbolinux 6.0.3 Turbolinux Turbolinux 6.0.2 Turbolinux Turbolinux 6.0.1 Turbolinux Turbolinux 6.0 Debian Linux 2.2 sparc Debian Linux 2.2 powerpc Debian Linux 2.2 arm Debian Linux 2.2 alpha Debian Linux 2.2 68k Debian Linux 2.2
Not Vulnerable:

dialog /tmp File Race Condition Vulnerability

Solution:
Upgrades available:


Debian Linux 2.2 powerpc

• Debian 2.2 ppc dialog_0.9a-20000118-3bis_powerpc.deb
  http://security.debian.org/dists/stable/updates/main/binary-powerpc/di alog_0.9a-20000118-3bis_powerpc.deb

Debian Linux 2.2

• Debian 2.2 i386 dialog_0.9a-20000118-3bis_i386.deb
  http://security.debian.org/dists/stable/updates/main/binary-i386/dialo g_0.9a-20000118-3bis_i386.deb

Debian Linux 2.2 alpha

• Debian 2.2 alpha dialog_0.9a-20000118-3bis_alpha.deb
  http://security.debian.org/dists/stable/updates/main/binary-alpha/dial og_0.9a-20000118-3bis_alpha.deb

Debian Linux 2.2 arm

• Debian 2.2 arm dialog_0.9a-20000118-3bis_arm.deb
  http://security.debian.org/dists/stable/updates/main/binary-arm/dialog _0.9a-20000118-3bis_arm.deb

Debian Linux 2.2 68k

• Debian 2.2 m68k dialog_0.9a-20000118-3bis_m68k.deb
  http://security.debian.org/dists/stable/updates/main/binary-m68k/dialo g_0.9a-20000118-3bis_m68k.deb

Turbolinux Turbolinux 6.0.5

• TurboLinux dialog-0.9a-2.i386.rpm
  ftp://ftp.turbolinux.com/pub/updates/6.0/security/dialog-0.9a-2.i386.r pm