Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-2837

The (1) getRule and (2) getChains functions in server/rules.cpp in fireflierd (fireflier-server) in FireFlier 1.1.6 allow local users to overwrite arbitrary files via a symlink attack on the /tmp/fireflier.rules temporary file.

Related bugs and status

CVE-2007-2837 (Candidate) is related to these bugs:

Bug #124725: [CVE-2007-2837] Unsafe tmp file handling

		In	Importance	Status
124725	[CVE-2007-2837] Unsafe tmp file handling	fireflier (Ubuntu)	Undecided	Fix Released
124725	[CVE-2007-2837] Unsafe tmp file handling	fireflier (Ubuntu Dapper)	Undecided	Fix Released
124725	[CVE-2007-2837] Unsafe tmp file handling	fireflier (Ubuntu Edgy)	Undecided	Won't Fix
124725	[CVE-2007-2837] Unsafe tmp file handling	fireflier (Ubuntu Feisty)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://bugs.debian.org...
DEBIAN: DSA-1326
BID: 24718
SECUNIA: 25900
SECUNIA: 25913
OSVDB: 37803
XF: fireflier-getchains-sy...