Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)

To: Matt Zimmerman <mdz@debian.org>
Cc: 174987@bugs.debian.org
Subject: Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
From: Julian Gilbey <jdg@polya.uklinux.net>
Date: Mon, 6 Jan 2003 00:07:09 +0000
Message-id: <[🔎] 20030106000709.GC655@polya>
Reply-to: Julian Gilbey <jdg@polya.uklinux.net>, 174987@bugs.debian.org
In-reply-to: <[🔎] 20030105185523.GS30199@mizar.alcor.net>
References: <[🔎] 20030103090045.GA1533@polya> <[🔎] 20030103155705.GB17378@mizar.alcor.net> <[🔎] 20030104222009.GB813@polya> <[🔎] 20030105014218.GF30199@mizar.alcor.net> <[🔎] 20030105023000.GE3960@polya> <[🔎] 20030105023439.GG30199@mizar.alcor.net> <[🔎] 20030105115557.GB725@polya> <[🔎] 20030105185523.GS30199@mizar.alcor.net>

On Sun, Jan 05, 2003 at 01:55:24PM -0500, Matt Zimmerman wrote:
> > I don't have a good suggestion for how to fix tempfile properly, other
> > than for it to test the directory and to fail if these conditions are
> > not properly met.
> 
> tempfile is fine, and trying to check this properly is a lot of trouble for
> minimal gain.  Consider that it must check permissions _and ownership_ for
> every parent directory leading up to the root in order to be sure, and even
> then there is no realistic test.  World writability?  Sticky bit?  Group
> writability?  What if the group only contains administrators, and they
> require write access to (e.g.) the directory which contains home
> directories?
> 
> > I'm going to send this on to security.
> 
> Send it as you like, but tempfile is not buggy here.

Oh, OK, I'm learning ;-)

Thanks.

   Julian

-- 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

        Julian Gilbey, website: http://www.polya.uklinux.net/
   Debian GNU/Linux Developer, see: http://people.debian.org/~jdg/
     Visit http://www.thehungersite.com/ to help feed the hungry

Reply to:

References:
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Julian Gilbey <jdg@polya.uklinux.net>
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Matt Zimmerman <mdz@debian.org>
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Julian Gilbey <jdg@polya.uklinux.net>
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Matt Zimmerman <mdz@debian.org>
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Julian Gilbey <jdg@polya.uklinux.net>
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Matt Zimmerman <mdz@debian.org>
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Julian Gilbey <jdg@polya.uklinux.net>
- Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Bug#175342: acknowledged by developer (Re: Bug#175342: Can't use URW Nimbus fonts at all)
Next by Date: Bug#175457: tetex-base wants to remove conffiles, no preservation of user change, nor any details
Previous by thread: Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
Next by thread: Bug#174987: tetex-bin: xdvi wrapper has a temporary file race condition (security hole)
Index(es):
- Date
- Thread