CVE-2025-9810

CVE-2025-9810

Name

CVE-2025-9810

Description

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen("w") on the history path and subsequent chmod() on the same path.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
96148269-fe82-4198-b1bf-3a73ce8bc92e	https://github.com/antirez/linenoise/blob/master/linenoise.c#L1321
96148269-fe82-4198-b1bf-3a73ce8bc92e	https://github.com/antirez/linenoise/pull/202

Type

URI

96148269-fe82-4198-b1bf-3a73ce8bc92e

https://github.com/antirez/linenoise/blob/master/linenoise.c#L1321

96148269-fe82-4198-b1bf-3a73ce8bc92e

https://github.com/antirez/linenoise/pull/202

CPE URI	Source package	Min version	Max version
	linenoise	== 0	== 0
`cpe:2.3:a:antirez:linenoise:1.0:::::::*`	linenoise	== None	== 1.0

CPE URI

Source package

Min version

Max version

linenoise

== 0

cpe:2.3:a:antirez:linenoise:1.0:*:*:*:*:*:*:*

linenoise

== None

== 1.0

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
linenoise	edge-main	1.0-r5	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
linenoise	3.23-main	1.0-r5	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
linenoise	3.22-main	1.0-r5	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
linenoise	3.21-main	1.0-r5	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
linenoise	3.20-main	1.0-r5	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
linenoise	3.19-main	1.0-r4	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

linenoise

edge-main

1.0-r5

Natanael Copa <ncopa@alpinelinux.org>

possibly vulnerable

linenoise

3.23-main