Debian Linux 2.1 dump Symlink Restore Vulnerability

info
discussion
exploit
solution
references

Debian Linux 2.1 dump Symlink Restore Vulnerability

The version of dump that ships with Debian Linux 2.1 has a problem restoring symlinks. A malicious user could use this to change the ownership of sensitive system files.