Gentoo Full Text Bug Listing

Bug 238124 - dev-lang/python move-faqwiz.sh insecure temporary file creation (CVE-2008-4108)

Bug#: 238124 (CVE-2008-4108)	Product: Gentoo Security	Version: unspecified	Platform: All
OS/Version: Linux	Status: RESOLVED	Severity: minor	Priority: P2
Resolution: FIXED	Assigned To: security@gentoo.org	Reported By: rbu@gentoo.org
Component: Vulnerabilities
URL: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498899
Summary: dev-lang/python move-faqwiz.sh insecure temporary file creation (CVE-2008-4108)
Keywords:
Status Whiteboard: B3 [noglsa]
Opened: 2008-09-19 16:05 0000

Description:

Opened: 2008-09-19 16:05 0000

CVE-2008-4108 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4108):
  Tools/faqwiz/move-faqwiz.sh (aka the generic FAQ wizard moving tool)
  in Python 2.4.5 might allow local users to overwrite arbitrary files
  via a symlink attack on a tmp$RANDOM.tmp temporary file.  NOTE: there
  may not be common usage scenarios in which tmp$RANDOM.tmp is located
  in an untrusted directory.

------- Comment #1 From Robert Buchholz 2008-09-19 16:06:46 0000 -------

The file is installed with USE=examples, so I consider it minor.

------- Comment #2 From Ali Polatel (RETIRED) 2008-09-19 16:45:24 0000 -------

python-2.4.4-15 and python-2.5.2-r8 fix this.

------- Comment #3 From Stefan Behte 2009-06-12 21:51:54 0000 -------

Ready to vote, I vote NO.

------- Comment #4 From Alex Legler 2009-06-13 09:34:06 0000 -------

No, too. Closing.