Unrated severityNVD Advisory· Published Apr 9, 2008· Updated Jun 16, 2026
CVE-2008-1687
CVE-2008-1687
Description
The (1) maketemp and (2) mkstemp builtin functions in GNU m4 before 1.4.11 do not quote their output when a file is created, which might allow context-dependent attackers to trigger a macro expansion, leading to unspecified use of an incorrect filename.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
10- secunia.com/advisories/29729nvdPatchVendor Advisory
- secunia.com/advisories/29671nvdVendor Advisory
- slackware.com/security/viewer.phpnvd
- www.openwall.com/lists/oss-security/2008/04/07/1nvd
- www.openwall.com/lists/oss-security/2008/04/07/12nvd
- www.openwall.com/lists/oss-security/2008/04/07/3nvd
- www.openwall.com/lists/oss-security/2008/04/07/4nvd
- www.securityfocus.com/bid/28688nvd
- www.vupen.com/english/advisories/2008/1151/referencesnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41706nvd
News mentions
0No linked articles in our index yet.