119309 2006-01-17 10:13 0000 app-text/antiword - insecure temporary file (CVE-2005-3126) 2006-01-22 17:09:13 0000 1 1 1 Unclassified Gentoo Security Vulnerabilities unspecified All Linux RESOLVED FIXED B3 [noglsa] jaervosz P2 minor --- 1 carlo@gentoo.org security@gentoo.org seemant@gentoo.org carlo@gentoo.org 2006-01-17 10:13:51 0000 from DSA 945-1: Javier Fern carlo@gentoo.org 2006-01-17 10:13:51 0000 from DSA 945-1: Javier Fernández-Sanguino Peña from the Debian Security Audit project discovered that two scripts in antiword, utilities to convert Word files to text and Postscript, create a temporary file in an insecure fashion. 0.36.1 is affected as well and the relevant parts of the patch below should apply. http://security.debian.org/pool/updates/main/a/antiword/antiword_0.35-2sarge1.diff.gz jaervosz@gentoo.org 2006-01-17 11:50:38 0000 Seemant please provide an updated ebuild. seemant@gentoo.org 2006-01-18 06:01:54 0000 Created an attachment (id=77417) updated ebuild updated ebuild -- see distfiles in /space/distfiles-local on toucan seemant@gentoo.org 2006-01-18 06:02:13 0000 Sune: there it is. seemant@gentoo.org 2006-01-18 06:11:26 0000 Actually, it's committed into cvs. Please test and mark stable as appropriate. koon@gentoo.org 2006-01-18 07:02:23 0000 Arches please test and mark stable Target KEYWORDS="alpha amd64 ~hppa ppc ~ppc-macos ppc64 sparc x86" dertobi123@gentoo.org 2006-01-18 08:38:36 0000 ppc stable corsair@gentoo.org 2006-01-18 08:55:52 0000 stable on ppc64 gustavoz@gentoo.org 2006-01-18 09:44:58 0000 sparc stable. fuzzyray@gentoo.org 2006-01-18 11:22:08 0000 Stable on x86 blubb@gentoo.org 2006-01-18 11:34:57 0000 amd64 stable yoswink@gentoo.org 2006-01-19 17:14:51 0000 alpha stable. Sorry about the delay :( dercorny@gentoo.org 2006-01-22 15:47:41 0000 glsa vote for this one, tend to say yes. taviso@gentoo.org 2006-01-22 17:04:21 0000 background: only the wrapper script to make drag and drop work for KDE1 users is affected, ie if you use antiword from command line or in KDE3, you're safe. so, as very few users are likely to be affected, i would vote NO. dercorny@gentoo.org 2006-01-22 17:09:13 0000 Correcting my vote to a no and closing the bug as fixed with no glsa. As always, feel free to reopen if you disagree. 77417 2006-01-18 06:01 0000 updated ebuild antiword-0.37.ebuild text/plain IyBDb3B5cmlnaHQgMTk5OS0yMDA1IEdlbnRvbyBGb3VuZGF0aW9uCiMgRGlzdHJpYnV0ZWQgdW5k ZXIgdGhlIHRlcm1zIG9mIHRoZSBHTlUgR2VuZXJhbCBQdWJsaWMgTGljZW5zZSB2MgojICRIZWFk ZXI6IC92YXIvY3Zzcm9vdC9nZW50b28teDg2L2FwcC10ZXh0L2FudGl3b3JkL2FudGl3b3JkLTAu MzYuMS5lYnVpbGQsdiAxLjQgMjAwNS8wOC8zMSAxMDoyMDoxMCBncm9iaWFuIEV4cCAkCgppbmhl cml0IGV1dGlscwoKSVVTRT0ia2RlIgpQQVRDSFZFUj0wLjEKREVTQ1JJUFRJT049ImZyZWUgTVMg V29yZCByZWFkZXIiCkhPTUVQQUdFPSJodHRwOi8vd3d3LndpbmZpZWxkLmRlbW9uLm5sIgpTUkNf VVJJPSJodHRwOi8vd3d3LndpbmZpZWxkLmRlbW9uLm5sL2xpbnV4LyR7UH0udGFyLmd6CgltaXJy b3I6Ly9nZW50b28vJHtQfS1nZW50b28tJHtQQVRDSFZFUn0udGFyLmJ6MiIKClNMT1Q9IjAiCkxJ Q0VOU0U9IkdQTC0yIgpLRVlXT1JEUz0ifmFscGhhIH5hbWQ2NCB+aHBwYSB+cHBjIH5wcGMtbWFj b3MgfnBwYzY0IH5zcGFyYyB+eDg2IgoKREVQRU5EPSJ2aXJ0dWFsL2dob3N0c2NyaXB0IgoKUEFU Q0hESVI9JHtXT1JLRElSfS9nZW50b28tYW50aXdvcmQvcGF0Y2hlcwoKc3JjX3VucGFjaygpIHsK CXVucGFjayAke0F9IDsgY2QgJHtTfQoJRVBBVENIX1NVRkZJWD0iZGlmZiIgXAoJCWVwYXRjaCAk e1BBVENIRElSfQp9CgpzcmNfY29tcGlsZSgpIHsKCWVtYWtlIE9QVD0iJHtDRkxBR1N9IiB8fCBk aWUKfQoKc3JjX2luc3RhbGwoKSB7CgltYWtlIERFU1RESVI9JHtEfSBnbG9iYWxfaW5zdGFsbCB8 fCBkaWUKCgl1c2Uga2RlIHx8IHJtIC1mICR7RH0vdXNyL2Jpbi9rYW50aXdvcmQKCglpbnNpbnRv IC91c3Ivc2hhcmUvJHtQTn0vZXhhbXBsZXMKCWRvaW5zIERvY3MvdGVzdGRvYy5kb2MgRG9jcy9h bnRpd29yZC5waHAKCgljZCBEb2NzCglkb21hbiBhbnRpd29yZC4xCglkb2RvYyBDT1BZSU5HIENo YW5nZUxvZyBFeG1oIEVtYWNzIEZBUSBIaXN0b3J5IE5ldHNjYXBlIFwKCVFhbmRBIFJlYWRNZSBN b3ppbGxhIE11dHQKfQo=