Re: CVE-2008-5378: possible symlink attacks

To: Debian Developers <debian-devel@lists.debian.org>
Subject: Re: CVE-2008-5378: possible symlink attacks
From: Andreas Tille <tillea@rki.de>
Date: Mon, 29 Dec 2008 20:00:14 +0100 (CET)
Message-id: <[🔎] alpine.DEB.2.00.0812291954520.24272@wr-linux02>
In-reply-to: <[🔎] 4950036F.1060906@beamnet.de>
References: <[🔎] alpine.DEB.2.00.0812221514540.32708@wr-linux02> <[🔎] 49500245.703@beamnet.de> <[🔎] 4950036F.1060906@beamnet.de>

On Mon, 22 Dec 2008, Thomas Viehmann wrote:

Oh, and if you really care, be sure that it's a regular file (not a
symlink pointing to something) owned by yourself before using it as a
hint to kill your processes.


Thanks for your hints.  I've prepared a patch at

  http://svn.debian.org/wsvn/debian-med/trunk/packages/arb/trunk/debian/patches/tmpfile_CVE-2008-5378.patch?op=file&rev=0&sc=0

and

  http://svn.debian.org/wsvn/debian-med/trunk/packages/arb/trunk/debian/bin/arb-kill?op=file&rev=0&sc=0

Could you please inspect this patch before I do the upload?

Kind regards

       Andreas.

--
http://fam-tille.de

Reply to:

Follow-Ups:
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>

References:
- Re: CVE-2008-5378: possible symlink attacks
  - From: Andreas Tille <tillea@rki.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>

Prev by Date: Re: Results for General Resolution: Lenny and resolving DFSG violations
Next by Date: Re: Results for General Resolution: Lenny and resolving DFSG violations
Previous by thread: Re: CVE-2008-5378: possible symlink attacks
Next by thread: Re: CVE-2008-5378: possible symlink attacks
Index(es):
- Date
- Thread