Paul Wise

**Name of the Vulnerable Software and Affected Versions** Encode.pm versions 3.05 through 3.11 Perl versions through 5.34.0 **Description** The issue is related to incorrect path handling in the Encode.pm module of the Perl programming language. This allows an attacker to inject arbitrary code and gain privileges. The exploitation requires an unusual configuration. The problem occurs because the || operator evaluates @INC in a scalar context, resulting in @INC having only an integer value. **Recommendations** For Encode.pm versions 3.05 through 3.11, consider disabling the Encode::ConfigLocal library as a temporary workaround until a patch is available. For Perl versions through 5.34.0, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** perltidy versions prior to 20160302 perlcritic (affected versions not specified) check-all-the-things (affected versions not specified) **Description** The issue allows local users to overwrite arbitrary files by creating a symlink. This can be demonstrated by creating a perltidy.ERR symlink that the victim cannot delete. The problem arises because perltidy relies on the current working directory for certain output files and lacks a symlink-attack protection mechanism. **Recommendations** For perltidy versions prior to 20160302, consider updating to a version that includes a symlink-attack protection mechanism. For perlcritic, check-all-the-things, and other affected software, restrict access to the vulnerable perltidy component until a patch is available. As a temporary workaround, consider disabling the use of perltidy for output files that rely on the current working directory until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Blender versions 2.5 through 2.63a **Description** The undo save quit routine in the kernel in Blender allows local users to overwrite arbitrary files via a symlink attack on the quit.blend temporary file. This issue might be a regression of a previously known problem. **Recommendations** For versions 2.5 through 2.63a, consider disabling the undo save quit routine as a temporary workaround until a patch is available. Restrict access to the quit.blend temporary file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bokken versions prior to 1.6 Bokken versions 1.5-x prior to 1.5-3 **Description** The issue allows local users to overwrite arbitrary files via a symlink attack on /tmp/graph.dot. **Recommendations** For versions prior to 1.6, update to version 1.6 or later. For versions 1.5-x prior to 1.5-3, update to version 1.5-3 or later.

**Name of the Vulnerable Software and Affected Versions** devscripts versions 2.10.x through 2.10.68 devscripts versions 2.11.x through 2.11.3 **Description** The issue allows remote attackers to obtain system information and execute arbitrary code via the file name in a (1) .dsc or (2) .changes file. **Recommendations** For devscripts versions 2.10.x through 2.10.68, update to version 2.10.69 or later. For devscripts versions 2.11.x through 2.11.3, update to version 2.11.4 or later.

**Name of the Vulnerable Software and Affected Versions** Merkaartor version 0.14 **Description** The issue allows local users to append data to arbitrary files via a symlink attack on the /tmp/merkaartor.log temporary file. **Recommendations** For Merkaartor version 0.14, consider restricting access to the /tmp/merkaartor.log file to prevent symlink attacks until a patch is available.

**Name of the Vulnerable Software and Affected Versions** VirtualBox versions prior to 2.0.6 **Description** The issue allows local users to overwrite arbitrary files via a symlink attack on a temporary file. This is due to a problem in the AcquireDaemonLock function in ipcdUnix.cpp. **Recommendations** For versions prior to 2.0.6, update to version 2.0.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** CGI:IRC versions prior to 0.5.8 **Description** The issue is related to multiple buffer overflows in the client.c file. This could potentially allow remote attackers to execute arbitrary code. The attack vectors include `cookies` and the `query string`. **Recommendations** For versions prior to 0.5.8, update to version 0.5.8 or later to resolve the issue.