{"id":"CVE-2013-4136","details":"ext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6 for Ruby allows local users to gain privileges or possibly change the ownership of arbitrary directories via a symlink attack on a directory with a predictable name in /tmp/.","aliases":["GHSA-w6rc-q387-vpgq"],"modified":"2026-04-16T06:15:20.073680684Z","published":"2013-09-30T21:55:07Z","related":["SUSE-SU-2016:0042-1"],"references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2013-1136.html"},{"type":"FIX","url":"https://github.com/phusion/passenger/commit/5483b3292cc2af1c83033eaaadec20dba4dcfd9b"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2013/07/16/6"},{"type":"WEB","url":"https://code.google.com/p/phusion-passenger/issues/detail?id=910"},{"type":"WEB","url":"https://github.com/phusion/passenger/blob/release-4.0.6/NEWS"}],"schema_version":"1.7.5"}