oss-sec mailing list archives

Re: CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue

From: Josh Bressers <bressers () redhat com>
Date: Mon, 10 Oct 2011 14:41:15 -0400 (EDT)

Please use CVE-2011-3616

Thanks.

-- 
    JB


----- Original Message -----

Hello,

Can a CVE be assigned for the below issue?

Conky 1.8.1 contains a vulnerability that allows malicious, local
users
to perform certain actions with escalated privileges.

https://bugs.launchpad.net/ubuntu/+source/conky/+bug/607309
http://secunia.com/advisories/43225/


Thanks,

--
Sean Amoss

Current thread:

CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue Sean Amoss (Oct 09)
- Re: CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue Josh Bressers (Oct 10)