On 2026-04-06 11:51:53 +0200, Bastian Blank wrote:
> Package: gimp
> Version: 3.2.2-1
> Severity: serious
> Tags: security
> X-Debbugs-Cc: [email protected], Debian Security Team
> <[email protected]>
>
> Starting gimp creates /tmp/gimp/3.2 in an insecure way. Neither is the
> name randomized, nor is there much care taken with creating the
> directory in a secure way in a world writable directory. This should be
> CWE-378.
gimp has just been removed from testing because of this bug.
But here, with gimp 3.2.4-2, I observe that a directory like
/tmp/gimp-3.2-XXFLJR3 is created, which seems to be randomized
and not world writable:
907566 mkdir("/tmp/gimp-3.2-XWW9CR3", 0700) = 0
--
Vincent Lefèvre <[email protected]> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / Pascaline project (LIP, ENS-Lyon)
