| Summary: | net-firewall/shorewall : insecure temporary files allow file system overwrite | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Thierry Carrez (RETIRED) <koon> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED FIXED | ||
| Severity: | normal | CC: | mholzer, ppc |
| Priority: | Highest | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | All | ||
| URL: | http://lists.shorewall.net/pipermail/shorewall-users/2004-June/013324.html | ||
| Whiteboard: | A3 [glsa] | ||
| Package list: | Runtime testing required: | --- | |
|
Description
Thierry Carrez (RETIRED)
2004-06-30 06:23:01 UTC
From Shorewall's Tom Eastep : "Javier Fernández-Sanguino Peña has discovered an exploitable vulnerability in the way that Shorewall handles temporary files and directories. The vulnerability can allow a non-root user to cause arbitrary files on the system to be overwritten. LEAF Bering and Bering uClibc users are generally not at risk due to the fact that LEAF boxes do not typically allow logins by non-root users. For 2.0 users, the problem is corrected in version 2.0.3a: http://shorewall.net/pub/shorewall/shorewall-2.0.3a ftp://shorewall.net/pub/shorewall/shorewall-2.0.3a For 1.4 users, the correct version is: http://shorewall.net/pub/shorewall/shorewall-1.4.10f ftp://shorewall.net/pub/shorewall/shorewall-1.4.10f I would appreciate immediate feedback on the 1.4.10f version; given that I don't have any 1.4 systems remaining, I couldn't fully test that code." Martin : could you have a look and bump accordingly ? 2.0.3a and 1.4.10f are in cvs adding arch-maintainers to mark at least 1.4.10f stable. Thanks Martin. alpha,ppc,x86,sparc : please test and mark 1.4.10f stable. 1.4.10f marked stable on alpha. Stable on sparc. GLSA drafted: security please review. GLSA is ready. The ebuild has now x86 stable. We're just waiting for ppc to test and mark 1.4.10f stable to publish the GLSA. Merked ppc Thanks ! It's now ready to send. GLSA 200407-07 |