Ubuntu
cecilia package

CVE-2008-1832: Insecure tempfile handling

Bug #241457 reported by James Westby
254
Affects Status Importance Assigned to Milestone
CECILIA
Unknown
Unknown
cecilia (Debian)
Fix Released
Unknown
cecilia (Ubuntu)
Fix Released
Undecided
Unassigned
Dapper
Won't Fix
Undecided
Unassigned
Feisty
Won't Fix
Undecided
Unassigned
Gutsy
Fix Released
Undecided
Unassigned
Hardy
Fix Released
Undecided
Unassigned
Intrepid
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: cecilia

Hi,

CVE-2008-1832 states lib/prefs.tcl in Cecilia 2.0.5 allows local users to overwrite arbitrary files via a symlink attack on the csvers temporary file.

Debian fixed this issue in 2.0.5-2.1

Thanks,

James

Revision history for this message
James Westby (james-w) wrote :

Hi,

Attached is the diff to merge the change from Debian for Intrepid.

Thanks,

James

Revision history for this message
James Westby (james-w) wrote :

Hi,

Attached is the diff for hardy.

Thanks,

James

Bug Watch Updater (bug-watch-updater)
Changed in cecilia:
status: Unknown → Fix Released
Revision history for this message
James Westby (james-w) wrote :

Hi,

Attached is the diff for gutsy.

Thanks,

James

Kees Cook (kees)
Changed in cecilia:
status: New → Fix Released
Revision history for this message
Hew (hew) wrote :

Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued for this release. Marking Feisty as Won't Fix.

Changed in cecilia:
status: New → Won't Fix
Jamie Strandboge (jdstrand)
Changed in cecilia:
status: New → In Progress
status: New → In Progress
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package cecilia - 2.0.5-2ubuntu4.1

---------------
cecilia (2.0.5-2ubuntu4.1) gutsy-security; urgency=high

  * SECURITY UPDATE: lib/prefs.tcl in Cecilia 2.0.5 allows local users to
    overwrite arbitrary files via a symlink attack on the csvers temporary
    file.
  * References:
    - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1832
    - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476321
    - LP: #241457
  * Adds debian/patches/13CVE-2008-1832.dpatch. Thanks to Debian, and
    specifically Steffen Joeris for the fix.

 -- James Westby <email address hidden> Fri, 20 Jun 2008 19:02:29 +0100

Changed in cecilia:
status: In Progress → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package cecilia - 2.0.5-2ubuntu5.1

---------------
cecilia (2.0.5-2ubuntu5.1) hardy-security; urgency=low

  * SECURITY UPDATE: lib/prefs.tcl in Cecilia 2.0.5 allows local users to
    overwrite arbitrary files via a symlink attack on the csvers temporary
    file.
  * References:
    - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1832
    - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476321
    - LP: #241457
  * Adds debian/patches/13CVE-2008-1832.dpatch. Thanks to Debian, and
    specifically Steffen Joeris for the fix.

 -- James Westby <email address hidden> Fri, 20 Jun 2008 18:12:23 +0100

Changed in cecilia:
status: In Progress → Fix Released
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Thanks for the debdiffs James, and sorry for the delay.

Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Thank you for reporting this bug to Ubuntu. dapper has reached EOL
(End of Life) and is no longer supported. As a result, this bug
against dapper is being marked "Won't Fix". Please see
https://wiki.ubuntu.com/Releases for currently supported Ubuntu
releases.

Please feel free to report any other bugs you may find.

Changed in cecilia (Ubuntu Dapper):
status: New → Won't Fix
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.