Description: Javier Fernandez-Sanguino Pena has reported a vulnerability in wine, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. The vulnerability is caused due to a temporary file being created insecurely in "/tmp" by winelauncher.in under certain error conditions. This can be exploited via symlink attacks to create or overwrite arbitrary files with the privileges of the user running the affected application. The vulnerability has been reported in version 20050725. Other versions may also be affected.
*** Bug 101772 has been marked as a duplicate of this bug. ***
Patch at : http://cvs.winehq.org/cvsweb/wine/programs/winelauncher.in.diff?r1=1.4&r2=1.5 Wine herd: please bump with patch (or advise)
added patch to cvs and to all applicable wine ebuilds ... not sure how security wants to handle this (revbumping all ebuilds/etc...)
You should revbump latest stable and unstable: 20050111-r1 -> 20050111-r2 20050725 -> 20050725-r1
done
Ready for GLSA vote. "Under certain error conditions", so I tend to vote NO
I vote NO.
Two votes for 'No GLSA' so closing without GLSA.
