CVE-2025-9810

Name
CVE-2025-9810
Description
TOCTOU  in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen("w") on the history path and subsequent chmod() on the same path.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
96148269-fe82-4198-b1bf-3a73ce8bc92e https://github.com/antirez/linenoise/blob/master/linenoise.c#L1321
96148269-fe82-4198-b1bf-3a73ce8bc92e https://github.com/antirez/linenoise/pull/202
af854a3a-2127-422b-91ae-364da2661108 https://github.com/antirez/linenoise/blob/4111f1d6cd29e136b4e86a25d1dd859a1e00813b/linenoise.c#L1321
af854a3a-2127-422b-91ae-364da2661108 https://github.com/antirez/linenoise/commit/f2558e1e588b1ba384ec73a2cf5c9a46409753db

Match rules

CPE URI Source package Min version Max version
linenoise == 0 == 0
cpe:2.3:a:antirez:linenoise:1.0:*:*:*:*:*:*:* linenoise == None == 1.0
cpe:2.3:a:antirez:linenoise:-:*:*:*:*:*:*:* linenoise == None == -

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
linenoise edge-main 1.0-r5 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
linenoise 3.23-main 1.0-r5 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
linenoise 3.22-main 1.0-r5 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
linenoise 3.21-main 1.0-r5 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
linenoise 3.20-main 1.0-r5 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
linenoise 3.19-main 1.0-r4 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable