CVE-2007-6061

描述

Audacity 1.3.2 creates a temporary directory with a predictable name without checking for previous existence of that directory, which allows local users to cause a denial of service (recording deadlock) by creating the directory before Audacity is run. NOTE: this issue can be leveraged to delete arbitrary files or directories via a symlink attack.

受影響套件(1)

• Debian/audacityfrom 0, < 1.3.4-1.1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6061