xdiagnose has a symlink attack due to improperly named file in /tmp
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| xdiagnose (Ubuntu) |
Fix Released
|
Low
|
Bryce Harrington | ||
| Precise |
Fix Released
|
Low
|
Jamie Strandboge | ||
| Quantal |
Fix Released
|
Low
|
Bryce Harrington | ||
Bug Description
The code already says it, mktemp should be used to direct the output of the commands to a secure location instead of /tmp .
/usr/lib/
def on_make_
execute("tar -cf %s %s" %(xorg_backup_file, xorg_backup_dir))
| Changed in xdiagnose (Ubuntu Precise): | |
| status: | In Progress → Fix Committed |

Thank you for using Ubuntu and reporting a bug. Ubuntu's kernel hardening should prevent attacks against xdiagnose. So I'll mark this as Low for now. Subscribing Bryce.