UBUNTU-CVE-2008-5144

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2008-5144
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2008/UBUNTU-CVE-2008-5144.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2008-5144
Upstream
Published
2008-11-18T16:00:00Z
Modified
2026-01-20T16:53:56.965690Z
Severity
  • Ubuntu - negligible
Summary
[none]
Details

nvidia-cg-toolkit-installer in nvidia-cg-toolkit 2.0.0015 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/nvidia-cg-toolkit-manifest temporary file.

References

Affected packages

Ubuntu:16.04:LTS
nvidia-cg-toolkit

Package

Name
nvidia-cg-toolkit
Purl
pkg:deb/ubuntu/nvidia-cg-toolkit@3.1.0013-2?arch=source&distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

3.*
3.1.0013-2

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcg",
            "binary_version": "3.1.0013-2"
        },
        {
            "binary_name": "libcggl",
            "binary_version": "3.1.0013-2"
        },
        {
            "binary_name": "nvidia-cg-dev",
            "binary_version": "3.1.0013-2"
        },
        {
            "binary_name": "nvidia-cg-toolkit",
            "binary_version": "3.1.0013-2"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2008/UBUNTU-CVE-2008-5144.json"
Ubuntu:18.04:LTS
nvidia-cg-toolkit

Package

Name
nvidia-cg-toolkit
Purl
pkg:deb/ubuntu/nvidia-cg-toolkit@3.1.0013-3?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

3.*
3.1.0013-2
3.1.0013-3

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcg",
            "binary_version": "3.1.0013-3"
        },
        {
            "binary_name": "libcggl",
            "binary_version": "3.1.0013-3"
        },
        {
            "binary_name": "nvidia-cg-dev",
            "binary_version": "3.1.0013-3"
        },
        {
            "binary_name": "nvidia-cg-toolkit",
            "binary_version": "3.1.0013-3"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2008/UBUNTU-CVE-2008-5144.json"
Ubuntu:20.04:LTS
nvidia-cg-toolkit

Package

Name
nvidia-cg-toolkit
Purl
pkg:deb/ubuntu/nvidia-cg-toolkit@3.1.0013-5?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

3.*
3.1.0013-5

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcg",
            "binary_version": "3.1.0013-5"
        },
        {
            "binary_name": "libcggl",
            "binary_version": "3.1.0013-5"
        },
        {
            "binary_name": "nvidia-cg-dev",
            "binary_version": "3.1.0013-5"
        },
        {
            "binary_name": "nvidia-cg-toolkit",
            "binary_version": "3.1.0013-5"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2008/UBUNTU-CVE-2008-5144.json"
Ubuntu:22.04:LTS
nvidia-cg-toolkit

Package

Name
nvidia-cg-toolkit
Purl
pkg:deb/ubuntu/nvidia-cg-toolkit@3.1.0013-5?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

3.*
3.1.0013-5

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcg",
            "binary_version": "3.1.0013-5"
        },
        {
            "binary_name": "libcggl",
            "binary_version": "3.1.0013-5"
        },
        {
            "binary_name": "nvidia-cg-dev",
            "binary_version": "3.1.0013-5"
        },
        {
            "binary_name": "nvidia-cg-toolkit",
            "binary_version": "3.1.0013-5"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2008/UBUNTU-CVE-2008-5144.json"
Ubuntu:24.04:LTS
nvidia-cg-toolkit

Package

Name
nvidia-cg-toolkit
Purl
pkg:deb/ubuntu/nvidia-cg-toolkit@3.1.0013-5build1?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

3.*
3.1.0013-5build1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcg",
            "binary_version": "3.1.0013-5build1"
        },
        {
            "binary_name": "libcggl",
            "binary_version": "3.1.0013-5build1"
        },
        {
            "binary_name": "nvidia-cg-dev",
            "binary_version": "3.1.0013-5build1"
        },
        {
            "binary_name": "nvidia-cg-toolkit",
            "binary_version": "3.1.0013-5build1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2008/UBUNTU-CVE-2008-5144.json"
Ubuntu:25.10
nvidia-cg-toolkit

Package

Name
nvidia-cg-toolkit
Purl
pkg:deb/ubuntu/nvidia-cg-toolkit@3.1.0013-5build1?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

3.*
3.1.0013-5build1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcg",
            "binary_version": "3.1.0013-5build1"
        },
        {
            "binary_name": "libcggl",
            "binary_version": "3.1.0013-5build1"
        },
        {
            "binary_name": "nvidia-cg-dev",
            "binary_version": "3.1.0013-5build1"
        },
        {
            "binary_name": "nvidia-cg-toolkit",
            "binary_version": "3.1.0013-5build1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2008/UBUNTU-CVE-2008-5144.json"