2014-10-15 14:00:00
debian
PUBLISHED
The changelog command in Apt before 1.0.9.2 allows local users to write to arbitrary files via a symlink attack on the changelog file.