CVE-2005-2660

NameCVE-2005-2660
Descriptionapachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-839-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
apachetop (PTS)bullseye0.19.7-3fixed
bookworm0.23.2-1fixed
sid, trixie0.23.2-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
apachetopsourcesarge0.12.5-1sarge1DSA-839-1
apachetopsource(unstable)0.12.5-3

Search for package or bug name: Reporting problems