{"id":"CVE-2008-2958","details":"Race condition in (1) checkinstall 1.6.1 and (2) installwatch allows local users to overwrite arbitrary files and have other impacts via symlink and possibly other attacks on temporary working directories.","modified":"2026-04-10T03:39:58.563497Z","published":"2008-07-01T22:41:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/30873"},{"type":"EVIDENCE","url":"http://lists.alioth.debian.org/pipermail/secure-testing-team/2008-June/001672.html"},{"type":"WEB","url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488140"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/43440"}],"schema_version":"1.7.5"}