[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: gEDA-user: Security bug -medium: geda-gnetlist



On Tue, Nov 18, 2008 at 10:06 PM, Chitlesh GOORAH wrote:
> Hello gEDA developers,
>
> A bug filed against geda-gnetlist by RedHat's security team was filed:
> https://bugzilla.redhat.com/show_bug.cgi?id=472116
> Bug 472116 -  CVE-2008-5148 geda-gnetlist insecure temporary file use [Fdevel]
>
> The issue is that the value of TMP is predictable
> and a local evildoer could create a symlink causing some data to be overwritten.
>
> Here is a small patch.
> http://chitlesh.fedorapeople.org/FEL/Patches/geda-gnetlist-CVE-mktemp.patch
>
> It is not that critical, but worth noticing.
>
> Kind regards,
> Chitlesh
>

Hello there,

looking at:
http://repo.or.cz/w/geda-gaf.git?a=blobdiff;f=gnetlist/scripts/sch2eaglepos.sh;h=f38ef5dd6f857272e4da9ae4ebb0b54666c69e14;hp=08afb67e74295964b1e081bb47715b75e772e26f;hb=stable-1.4;hpb=001e3561ed55de2228591a511a27e24d5cd996e3

you haven't really corrected the issue. $$ is predictable. It is
recommended to opt for mktemp instead as my patch suggested.

Chitlesh


_______________________________________________
geda-user mailing list
geda-user@xxxxxxxxxxxxxx
http://www.seul.org/cgi-bin/mailman/listinfo/geda-user