DEBIAN-CVE-2008-5303

DEBIAN-CVE-2008-5303 PUBLISHED

Race condition in the rmtree function in File::Path 1.08 (lib/File/Path.pm) in Perl 5.8.8 allows local users to to delete arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is a regression error related to CVE-2005-0448. It is different from CVE-2008-5302 due to affected versions.

Affected Products

Vendor	Product	Versions
Debian:11	perl	0, 0, 0
Debian:14	perl	0, 0, 0
Debian:13	perl	0, 0, 0
Debian:12	perl	0, 0, 0

Timeline

Dec 1, 2008 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2008-5303 advisory

Open in Interactive Console →