VYPR

rpmdevtools

by Fedorahosted

CVEs (1)

  • CVE-2012-3500Oct 1, 2012
    risk 0.00cvss epss 0.00

    scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.