CVE-2015-4156

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2015-4156

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2015-4156.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2015-4156

Downstream

DEBIAN-CVE-2015-4156

UBUNTU-CVE-2015-4156

Published

2015-06-02T14:59:16Z

Modified

2025-08-09T19:01:27Z

Summary

[none]

Details

GNU Parallel before 20150522 (Nepal), when using (1) --cat or (2) --fifo with --sshlogin, allows local users to write to arbitrary files via a symlink attack on a temporary file.

References

http://lists.gnu.org/archive/html/parallel/2015-04/msg00045.html
http://lists.gnu.org/archive/html/parallel/2015-05/msg00024.html
http://lists.opensuse.org/opensuse-updates/2015-05/msg00090.html
http://www.securityfocus.com/bid/74961

CVE-2015-4156

Affected packages