CVE-2009-4664

NameCVE-2009-4664
DescriptionFirewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain privileges via a symlink attack on an unspecified temporary file that is created by the iptables script.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs547390

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
fwbuilder (PTS)buster5.3.7-3fixed
bullseye5.3.7-4.1fixed
bookworm5.3.7-5fixed
sid5.3.7-8fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
fwbuildersourcelenny(not affected)
fwbuildersource(unstable)3.0.7-1medium547390
libfwbuildersourcelenny(not affected)
libfwbuildersource(unstable)3.0.7-1medium547390

Notes

[lenny] - fwbuilder <not-affected> (only versions 3.0.4, 3.0.5 and 3.0.6 are affected)
[lenny] - libfwbuilder <not-affected> (only versions 3.0.4, 3.0.5 and 3.0.6 are affected)
m68k package in debports in still affected at version 3.0.5
see http://www.fwbuilder.org/docs/firewall_builder_release_notes.html#3.0.7
Search for package or bug name: Reporting problems