Re: CVE-2008-5378: possible symlink attacks

To: Debian Developers <debian-devel@lists.debian.org>
Subject: Re: CVE-2008-5378: possible symlink attacks
From: Andreas Tille <tillea@rki.de>
Date: Tue, 30 Dec 2008 09:41:44 +0100 (CET)
Message-id: <[🔎] alpine.DEB.2.00.0812300938190.5318@wr-linux02>
In-reply-to: <[🔎] 4959686C.4060700@beamnet.de>
References: <[🔎] alpine.DEB.2.00.0812221514540.32708@wr-linux02> <[🔎] 49500245.703@beamnet.de> <[🔎] 4950036F.1060906@beamnet.de> <[🔎] alpine.DEB.2.00.0812291954520.24272@wr-linux02> <[🔎] 49592735.2000007@beamnet.de> <[🔎] alpine.DEB.2.00.0812292137000.7894@wr-linux02> <[🔎] 4959686C.4060700@beamnet.de>

On Tue, 30 Dec 2008, Thomas Viehmann wrote:

Also, mkstemp(3):
      The last six characters of template must be "XXXXXX" and these
      are replaced with a string that makes the  filename
      unique.   Since it will be modified, template must not be a
      string constant, but should be declared as a character array.
so you have the name readily available.


Hmm, stupid me - my patch is just wrong.  It makes no sense to
start reading a file which is created using mktemp - by definition
it does not exist.  SOrry for the confusion - I just have to
search the filesystem at this piece of code for the previousely
created file (or keep a variable with the name).

Don't know, causing people to accidentally kill their processes seems
nasty to me, but it might not be that critical.


Considering the practical use I do not think that this application
is a frequently used way to do this harm to people.

Kind regards

       Andreas.

--
http://fam-tille.de

Reply to:

References:
- Re: CVE-2008-5378: possible symlink attacks
  - From: Andreas Tille <tillea@rki.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Andreas Tille <tillea@rki.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Andreas Tille <tillea@rki.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>

Prev by Date: Bug#510184: ITP: gtk-qt-engine-kde4 -- theme engine using Qt 4 for GTK+ 2.x
Next by Date: Re: CVE-2008-5378: possible symlink attacks
Previous by thread: Re: CVE-2008-5378: possible symlink attacks
Next by thread: Bug#509485: ITP: libgooglecharts-ruby -- Ruby library to create sexy charts using the Google API
Index(es):
- Date
- Thread