CVE-2011-3618

NameCVE-2011-3618
Descriptionatop: symlink attack possible due to insecure tempfile handling
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium
Debian Bugs622794

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
atop (PTS)jessie1.26-2fixed
stretch2.2.6-4fixed
buster, bullseye, sid2.4.0-3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
atopsource(unstable)1.23-1.1low622794
atopsourcelenny1.23-1+lenny1622794
atopsourcesqueeze1.23-1+squeeze1622794

Search for package or bug name: Reporting problems