VYPR
Medium severity5.5NVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-1901

CVE-2004-1901

Description

Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:gentoo:portage:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:gentoo:portage:*:*:*:*:*:*:*:*range: <2.0.50
    • cpe:2.3:a:gentoo:portage:2.0.50:-:*:*:*:*:*:*
  • cpe:2.3:o:gentoo:linux:1.4:-:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:gentoo:linux:1.4:-:*:*:*:*:*:*
    • cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*
    • cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.