Re: Bug#508111: devscripts: Insecure tempfile creation (redux).

To: "Nico Golde" <debian-release+ml@ngolde.de>
Cc: <508111@bugs.debian.org>, "Cyril Brulebois" <kibi@debian.org>, <debian-release@lists.debian.org>
Subject: Re: Bug#508111: devscripts: Insecure tempfile creation (redux).
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Mon, 8 Dec 2008 16:18:18 -0000
Message-id: <[🔎] 5CEF4FEE27A94E60A5C5C2AADA5D4544@andromeda>
References: <20081208003135.8697.61895.reportbug@talisker.kerlabs.com> <1228717865.3302.28.camel@kaa.jungle.aubergine.my-net-space.net> <20081208083656.GJ6996@ngolde.de> <[🔎] 7D9F73EC5C83493384A18F398DBB0622@andromeda> <[🔎] 20081208102536.GD13156@ngolde.de>

Nico Golde wrote, Mon, 8 Dec 2008 11:25:36 +0100:
[...]

Nico Golde wrote, Monday, December 08, 2008 8:36 AM:

[...]

>No this is correct, devscripts is vulnerable to
>a symlink attack before the fix (for example signfile()).

[...]

Just had a look again at this issue. It should be no
real problem as mktemp creates the file with safe
permissions, so this can't be used to overwrite an
arbitrary file. Though mktemp is stuck in an endless
loop if there is already a symlink present with the
template name.

Thanks. In that case, I don't think this needs any RM action; apologies forthe noise.

Adam

Reply to:

References:
- Re: Bug#508111: devscripts: Insecure tempfile creation (redux).
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: Bug#508111: devscripts: Insecure tempfile creation (redux).
  - From: Nico Golde <debian-release+ml@ngolde.de>

Prev by Date: Unblock request: backupninja 0.9.6-4
Next by Date: Re: Suggestion for removal: acl2.
Previous by thread: Re: Bug#508111: devscripts: Insecure tempfile creation (redux).
Next by thread: RC#506892 (mpg321): BTS false positive ?
Index(es):
- Date
- Thread