High severity7.1NVD Advisory· Published Oct 17, 2017· Updated Jun 17, 2026
CVE-2014-2277
CVE-2014-2277
Description
The make_temporary_filename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:perltidy_project:perltidy:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:perltidy_project:perltidy:*:*:*:*:*:*:*:*range: <=2012-07-01-1
- (no CPE)range: <=20120701-1
Patches
Vulnerability mechanics
References
6- lists.fedoraproject.org/pipermail/package-announce/2014-March/130464.htmlnvdIssue TrackingThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2014-March/130479.htmlnvdIssue TrackingThird Party Advisory
- www.openwall.com/lists/oss-security/2014/03/09/1nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/66139nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/92104nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.