| Summary: | app-text/docbook-sgml-utils: docbook2man tempfile vulnerability | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Luke Macken (RETIRED) <lewk> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED INVALID | ||
| Severity: | normal | CC: | text-markup+disabled |
| Priority: | High | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | All | ||
| URL: | http://secunia.com/advisories/13642/ | ||
| Whiteboard: | |||
| Package list: | Runtime testing required: | --- | |
|
Description
Luke Macken (RETIRED)
2004-12-23 14:50:43 UTC
Description: Javier Fernández-Sanguino Peña has reported a vulnerability in Docbook-to-Man, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. The vulnerability is caused due to the docbook-to-man.sh script creating temporary files insecurely. This can be exploited via symlink attacks to overwrite arbitrary files with the privileges of the user running the vulnerable script. Solution: Grant only trusted users access to affected systems. text-markup, please verify/advise. We don't have docbook-to-man, we have docbook2man as part of docbook-sgml-utils. AFAICT it isn't affected by this vulnerability. Closing as INVALID, feel free to reopen if you think I'm wrong. |