CVE-2005-3011

Publication date 21 September 2005

Last updated 17 July 2025

Ubuntu priority

The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
texinfo	7.04 feisty	Fixed 4.8.dfsg.1-4build1
	6.10 edgy	Fixed 4.8.dfsg.1-1ubuntu0.1
	6.06 LTS dapper	Fixed 4.8-4ubuntu0.1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-194-1
texinfo vulnerability
6 October 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2005-3011