Marcus Huewe

**Name of the Vulnerable Software and Affected Versions** open buildservice versions 2.4 through 2.4.7 open buildservice versions 2.5 through 2.5.6 open buildservice versions 2.6 through 2.6.2 **Description** The issue allows buildservice users to potentially break out of confinement or cause denial of service attacks on the source service due to the generation of non-standard files like symlinks or device nodes by the source service patch application. **Recommendations** For open buildservice versions 2.4 through 2.4.7, update to version 2.4.8 or later. For open buildservice versions 2.5 through 2.5.6, update to version 2.5.7 or later. For open buildservice versions 2.6 through 2.6.2, update to version 2.6.3 or later.