Canonical · Xdiagnose · CVE-2012-5355
**Name of the Vulnerable Software and Affected Versions**
xdiagnose versions prior to 2.5.2ubuntu0.1
**Description**
The issue allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.
**Recommendations**
For versions prior to 2.5.2ubuntu0.1, update to version 2.5.2ubuntu0.1 or later to resolve the issue.