CVE-2013-2217

NameCVE-2013-2217
Descriptioncache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name in /tmp/suds/.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs714340

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
suds (PTS)buster0.7~git20150727.94664dd-5fixed
bullseye0.8.4-1fixed
sid, trixie, bookworm1.1.2-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
sudssourcesqueeze0.3.9-1+deb6u1
sudssourcewheezy0.4.1-5+deb7u1
sudssource(unstable)0.4.1-8low714340
Search for package or bug name: Reporting problems