CVE-2003-0539

NameCVE-2003-0539
Descriptionskk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-343
NVD severitymedium (attack range: local)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
ddskk (PTS)jessie15.1.54-3fixed
stretch16.1-2fixed
buster, sid16.2-3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ddskksource(unstable)12.1.cvs.20030622-1medium
ddskksourcewoody11.6.rel.0-2woody1mediumDSA-343
skksource(unstable)10.62a-6medium
skksourcewoody10.62a-4woody1mediumDSA-343

Search for package or bug name: Reporting problems