Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 81293

Summary: app-admin/gnomesu (Vendor-Sec)
Product: Gentoo Security Reporter: Sune Kloppenborg Jeppesen (RETIRED) <jaervosz>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
Whiteboard:
Package list:
Runtime testing required: ---

Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-02-08 13:14:37 UTC
for everyone who is shipping gnomesu and gave /opt/gnome/lib/libgnomesu/gnomesu-backend
higher privileges.

problems:
- local root b/c of incorrect usage of popen()
- X/ICE cookies are copied arround w/o restrictions (local root
  possible)
- PATH env. variable not sanitized correctly
- possible file overwrite (not tested)
- possible integer overflows in *alloc functions (not tested)
Comment 1 Thierry Carrez (RETIRED) gentoo-dev 2005-02-11 07:20:48 UTC
Our gnomesu is not the same and does not have the source layout of the "libgnomesu-0.9.5" Thomas Biege talks about. Closing as INVALID. Reopen if you disagree.