IBM Information for VU#405955
util-linux package vulnerable to privilege escalation when "ptmptmp" file is not removed properly when using "chfn" utility
- Vendor Information Help Date Notified: 26 Jun 2002
- Statement Date:
- Date Updated: 17 Jul 2002
IBM's AIX operating system is not vulnerable to the above issues. While IBM does supply open source packages for AIX through the AIX Toolbox for Linux Applications, the util-linux package is not one of them.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.