Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 92926 - dev-python/cheetah Insecure Module Importing
Summary: dev-python/cheetah Insecure Module Importing
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Other
: High normal (vote)
Assignee: Gentoo Security
Whiteboard: B2 [glsa] jaervosz
Depends on:
Reported: 2005-05-17 08:00 UTC by Sune Kloppenborg Jeppesen (RETIRED)
Modified: 2005-05-19 10:02 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-05-17 08:00:20 UTC
Brian Bird has reported a vulnerability in Cheetah, which can be exploited by malicious, local users to gain escalated privileges.
 The vulnerability is caused due to Cheetah searching for modules in the world-writable "/tmp" directory before looking in the PythonPath when importing modules. This can be exploited to execute arbitrary code with escalated privileges by placing a malicious module in the "/tmp" directory.

The vulnerability has been fixed in version 0.9.17-rc1.

Provided and/or discovered by:
Brian Bird
Comment 1 Thierry Carrez (RETIRED) gentoo-dev 2005-05-17 10:28:59 UTC
Python team, please bump
Comment 2 Rob Cakebread (RETIRED) gentoo-dev 2005-05-17 14:10:03 UTC
Bumped to 0.9.17-rc1 in CVS, removed vulnerable versions.
Comment 3 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-05-17 14:19:59 UTC
Thx for the swift reaction. Committed directly to stable this one is ready for 
Comment 4 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-05-19 10:02:00 UTC
GLSA 200505-14