Bug#480972: vulnerable to symlink attacks

To: debian-qt-kde@lists.debian.org
Subject: Bug#480972: vulnerable to symlink attacks
From: md@Linux.IT (Marco d'Itri)
Date: Tue, 13 May 2008 13:59:31 +0200
Message-id: <[🔎] 20080513115931.GA31910@bongo.bofh.it>
Mail-followup-to: md@Linux.IT, debian-qt-kde@lists.debian.org

Please find out which part of KDE embeds this code...

----- Forwarded message from Marco d'Itri <md@linux.it> -----

Subject: Bug#480972: vulnerable to symlink attacks
Reply-To: Marco d'Itri <md@linux.it>, 480972@bugs.debian.org
From: Marco d'Itri <md@linux.it>
To: Debian Bug Tracking System <submit@bugs.debian.org>

Package: libuu-dev
Version: 0.5.20-3
Severity: critical
Tags: security upstream

Security team: libuu-dev is a static-only library (see #216593).
klibido, nget and slrn build-depend on libuu-dev, while
libconvert-uulib-perl and kde (I don't know exactly which package,
look in the kdesupport directory) contain an embedded copy.

Pan has an embedded copy too, but it's modified and does not contain
this code.

This code in uulib/uunconc.c is vulnerable to symlink attacks.

  if ((data->binfile = tempnam (NULL, "uu")) == NULL) {
    UUMessage (uunconc_id, __LINE__, UUMSG_ERROR,
               uustring (S_NO_TEMP_NAME));
    return UURET_NOMEM;
  } 

  if ((dataout = fopen (data->binfile, mode)) == NULL) {

-- 
ciao,
Marco

----- End forwarded message -----

-- 
ciao,
Marco

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: Bug#480972: vulnerable to symlink attacks
  - From: Sune Vuorela <Sune@vuorela.dk>

Prev by Date: Processed: tagging 473459
Next by Date: Bug#481059: qt4-doc: Package is empty except pictures
Previous by thread: Processed: tagging 473459
Next by thread: Re: Bug#480972: vulnerable to symlink attacks
Index(es):
- Date
- Thread