2005-01-19 05:00:00
mitre
PUBLISHED
lintian 1.23 and earlier removes the working directory even if it was not created by lintian, which may allow local users to delete arbitrary files or directories via a symlink attack.