oss-sec mailing list archives

CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue

From: Sean Amoss <failedtosync () gmail com>
Date: Sun, 09 Oct 2011 12:26:58 -0400

Hello,

Can a CVE be assigned for the below issue?

Conky 1.8.1 contains a vulnerability that allows malicious, local users
to perform certain actions with escalated privileges.

https://bugs.launchpad.net/ubuntu/+source/conky/+bug/607309
http://secunia.com/advisories/43225/


Thanks,

-- 
Sean Amoss

Current thread:

CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue Sean Amoss (Oct 09)
- Re: CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue Josh Bressers (Oct 10)