xdiagnose has a symlink attack due to improperly named file in /tmp
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xdiagnose (Ubuntu) |
Fix Released
|
Low
|
Bryce Harrington | ||
Precise |
Fix Released
|
Low
|
Jamie Strandboge | ||
Quantal |
Fix Released
|
Low
|
Bryce Harrington |
Bug Description
The code already says it, mktemp should be used to direct the output of the commands to a secure location instead of /tmp .
/usr/lib/
def on_make_
execute("tar -cf %s %s" %(xorg_backup_file, xorg_backup_dir))
Changed in xdiagnose (Ubuntu Precise): | |
status: | In Progress → Fix Committed |
Thank you for using Ubuntu and reporting a bug. Ubuntu's kernel hardening should prevent attacks against xdiagnose. So I'll mark this as Low for now. Subscribing Bryce.