Unrated severityNVD Advisory· Published Jan 28, 2014· Updated Jun 17, 2026
CVE-2014-1638
CVE-2014-1638
Description
(1) debian/postrm and (2) debian/localepurge.config in localepurge before 0.7.3.2 use tempfile to create a safe temporary file but appends a suffix to the original filename and writes to this new filename, which allows local users to overwrite arbitrary files via a symlink attack on the new filename.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <0.7.3.2
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.