Launchpad CVE tracker

CVE 2011-3154

DistUpgrade/DistUpgradeViewKDE.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134.11.1, 1:0.142.x before 1:0.142.23.1, 1:0.150.x before 1:0.150.5.1, and 1:0.152.x before 1:0.152.25.5 does not properly create temporary files, which allows local users to obtain the XAUTHORITY file content for a user via a symlink attack on the temporary file.

Related bugs and status

CVE-2011-3154 (Candidate) is related to these bugs:

Bug #881541: DistUpgrade/DistUpgradeViewKDE.py uses mktemp -- which is insecure

Summary				In	Importance	Status
	881541	DistUpgrade/DistUpgradeViewKDE.py uses mktemp -- which is insecure		update-manager (Ubuntu)	Medium	Fix Released

Bug #881548: Insecure use of tarfile module PRIOR to validation of the downloaded tarfile

		In	Importance	Status
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-manager (Ubuntu)	Critical	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-manager (Ubuntu Lucid)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-manager (Ubuntu Maverick)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-manager (Ubuntu Natty)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-manager (Ubuntu Hardy)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-manager (Ubuntu Oneiric)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-manager (Ubuntu Precise)	Critical	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-notifier (Ubuntu)	High	Invalid
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-notifier (Ubuntu Hardy)	High	Won't Fix
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-notifier (Ubuntu Lucid)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-notifier (Ubuntu Maverick)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-notifier (Ubuntu Natty)	High	Fix Released
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-notifier (Ubuntu Oneiric)	High	Invalid
881548	Insecure use of tarfile module PRIOR to validation of the downloaded tarfile	update-notifier (Ubuntu Precise)	High	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-3154

References