The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augsave file in a backup save action, a different vector than CVE-2012-0786.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | <= 2019u8 |