Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 250474 (CVE-2008-5375) - <media-sound/cmus-2.2.0-r1 cmus-status-display symlink attack (CVE-2008-5375)
Summary: <media-sound/cmus-2.2.0-r1 cmus-status-display symlink attack (CVE-2008-5375)
Status: RESOLVED FIXED
Alias: CVE-2008-5375
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High normal
Assignee: Gentoo Security
URL: http://cve.mitre.org/cgi-bin/cvename....
Whiteboard: B3 [glsa]
Keywords:
Depends on:
Blocks: debian-tempfile
  Show dependency tree
 
Reported: 2008-12-10 04:42 UTC by stupendoussteve
Modified: 2009-09-09 13:34 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description stupendoussteve 2008-12-10 04:42:46 UTC 
From CVE-2008-5375 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5375)
 cmus-status-display in cmus 2.2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cmus-status temporary file.

Reproducible: Always
Comment 1 Samuli Suominen (RETIRED) gentoo-dev 2009-05-12 06:19:40 UTC 
*cmus-2.2.0-r1 (12 May 2009)

  12 May 2009; Samuli Suominen <ssuominen@gentoo.org> +cmus-2.2.0-r1.ebuild,
  +files/cmus-2.2.0-symlink_attack.patch:
  CVE-2008-5375, symlink attack wrt #250474.

amd64/x86, please test and mark stable.
security, please adjust the bug fields, still can't remember how you want it done :-)
Comment 2 Christian Faulhammer (RETIRED) gentoo-dev 2009-05-12 12:14:55 UTC 
x86 stable
Comment 3 Markus Meier gentoo-dev 2009-05-13 18:20:48 UTC 
amd64 stable, all arches done.
Comment 4 Samuli Suominen (RETIRED) gentoo-dev 2009-05-13 18:48:51 UTC 
And vulnerable version removed from tree.
Comment 5 Tobias Heinlein (RETIRED) gentoo-dev 2009-05-22 10:46:41 UTC 
All arches done, entering [glsa?]. I vote YES.
Comment 6 Stefan Behte (RETIRED) gentoo-dev Security 2009-06-23 20:29:54 UTC 
Yes too. Request filed.
Comment 7 Alex Legler (RETIRED) archtester gentoo-dev Security 2009-09-09 13:34:43 UTC 
GLSA 200909-08