oss-sec mailing list archives
Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use
From: Josh Bressers <bressers () redhat com>
Date: Fri, 4 Jun 2010 15:39:57 -0400 (EDT)
Please use CVE-2010-2061 for this.
Thanks.
--
JB
----- "Jan Lieskovsky" <jlieskov () redhat com> wrote:
Hi Steve, vendors, Guillem Jover pointed out: [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583435#5 a deficiency in the way rpcbind gathered / saved registrations from / to dumped file(s). A local attacker could use this flaw to conduct symbolic link attacks, leading to un-authorized disclosure of sensitive information and / or to important system files data integrity corruption. References: [2] https://bugzilla.redhat.com/show_bug.cgi?id=599697 [3] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583435#15 Could you allocate CVE id for this? Thanks && Regards, Jan. -- Jan iankko Lieskovsky / Red Hat Security Response Team
Current thread:
- CVE Request -- rpcbind -- Insecure (predictable) temporary file use Jan Lieskovsky (Jun 03)
- Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Josh Bressers (Jun 04)
- Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Steven M. Christey (Jun 07)
- Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Josh Bressers (Jun 07)
- Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Steven M. Christey (Jun 07)
- Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Steven M. Christey (Jun 07)
- Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Josh Bressers (Jun 04)
- <Possible follow-ups>
- Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Josh Bressers (Jun 08)