[Secure-testing-team] Bug#698490: git-effort: predictable /tmp filename
Helmut Grohne
helmut at subdivi.de
Sat Jan 19 11:08:10 UTC 2013
Package: git-extras
Version: 1.7.0-1.1
Severity: serious
Tags: security
The git-effort utility uses /tmp/.git-effort as the name of its
temporary filename. While this already prevents two users from using
this utility (due to not cleaning its temporary file) it also allows for
targeted symbolic link attacks. No guessing involved.
Helmut
More information about the Secure-testing-team
mailing list