NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Secunia Advisories> 2003-q3

[sec-adv] Debian x-face-el Insecure Temporary File Creation Vulnerability

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Mon Jul 07 2003 - 05:01:59 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Debian x-face-el Insecure Temporary File Creation Vulnerability

READ ONLINE:
http://www.secunia.com/advisories/9186/

CRITICAL:
Less critical

IMPACT:
Privilege escalation

WHERE:
Local system

OPERATING SYSTEM:
Debian GNU/Linux unstable alias sid
Debian GNU/Linux 3.0

DESCRIPTION:
Debian has reported a vulnerability in x-face-el, which can be
exploited by malicious, local users to escalate their privileges on a
vulnerable system.

The vulnerability is caused due to insecure creation of temporary
files, which potentially could be exploited via a symlink attack to
overwrite arbitrary files with the privileges of the user running
Emacs and x-face-el.

SOLUTION:
Updated packages:

-- Debian GNU/Linux 3.0 alias woody --

Source archives:

http://security.debian.org/pool/updates/main/x/x-face-el/x-face-el_1.3.6.19-1woody1.dsc
Size/MD5 checksum: 591 f431ba4034b534290d29103076464020
http://security.debian.org/pool/updates/main/x/x-face-el/x-face-el_1.3.6.19-1woody1.diff.gz
Size/MD5 checksum: 21268 ba3e6ed17c8c03e8fab969909bcd8572
http://security.debian.org/pool/updates/main/x/x-face-el/x-face-el_1.3.6.19.orig.tar.gz
Size/MD5 checksum: 80666 b541ab8e216e9df76f45b8b26241debd

Architecture independent components:

http://security.debian.org/pool/updates/main/x/x-face-el/x-face-el_1.3.6.19-1woody1_all.deb
Size/MD5 checksum: 101882 9773535a2bb5e0ce12c34bb0bd5b351a

-- Debian GNU/Linux unstable alias sid --

Fixed in version 1.3.6.23-1.

ORIGINAL ADVISORY:
http://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00137.html

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]