CVE-2008-1569

Name	CVE-2008-1569
Description	policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)
References	DSA-1531-2

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
policyd-weight (PTS)	buster, bullseye	0.1.15.2-12	fixed
	bookworm, sid	0.1.15.2-12.1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
policyd-weight	source	etch	0.1.14-beta-6etch2		DSA-1531-2
policyd-weight	source	(unstable)	0.1.14.17-1	low