** Summary changed:
- insecure file access (breezy, dapper, edgy, gutsy)
+ insecure file access (breezy, dapper, edgy, gutsy, feisty)
** Description changed:
Reproduced in versions:
2.37a-1ubuntu1.1 (breezy?)
2.41-1ubuntu4 (dapper)
+ 2.42a-linux-glibc232-py24-i386-static (blender.org binary)
2.42a-1ubuntu1.1 (edgy)
2.44-2ubuntu2 (gutsy)
+ 2.45-4ubuntu1 (feisty)
+
Blender writes to files in /tmp/ in an insecure fashion. For example,
launching blender and then selecting "Render > Render Animation", writes
to the file /tmp/0001.jpg.
This can be exploited by a malicious user to overwrite arbitrary files
of another user using blender:
[EMAIL PROTECTED] ln -s /home/bob/thesis.tex /tmp/0001.jpg
** Summary changed:
- insecure file access (breezy, dapper, edgy, gutsy, feisty)
+ insecure file access (breezy, dapper, edgy, gutsy, hardy)
** Description changed:
Reproduced in versions:
2.37a-1ubuntu1.1 (breezy?)
2.41-1ubuntu4 (dapper)
2.42a-linux-glibc232-py24-i386-static (blender.org binary)
2.42a-1ubuntu1.1 (edgy)
2.44-2ubuntu2 (gutsy)
- 2.45-4ubuntu1 (feisty)
+ 2.45-4ubuntu1 (hardy)
Blender writes to files in /tmp/ in an insecure fashion. For example,
launching blender and then selecting "Render > Render Animation", writes
to the file /tmp/0001.jpg.
This can be exploited by a malicious user to overwrite arbitrary files
of another user using blender:
[EMAIL PROTECTED] ln -s /home/bob/thesis.tex /tmp/0001.jpg
--
insecure file access (breezy, dapper, edgy, gutsy, hardy)
https://bugs.launchpad.net/bugs/6671
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
