NVClock: Insecure file usage — GLSA 200707-08

A vulnerability has been discovered in NVClock, allowing for the execution of arbitrary code.

Affected packages

media-video/nvclock on all architectures
Affected versions < 0.7-r2
Unaffected versions >= 0.7-r2

Background

NVClock is an utility for changing NVidia graphic chipsets internal frequency.

Description

Tavis Ormandy of the Gentoo Linux Security Team discovered that NVClock makes usage of an insecure temporary file in the /tmp directory.

Impact

A local attacker could create a specially crafted temporary file in /tmp to execute arbitrary code with the privileges of the user running NVCLock.

Workaround

There is no known workaround at this time.

Resolution

All NVClock users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=media-video/nvclock-0.7-r2"

References

Release date
July 24, 2007

Latest revision
July 24, 2007: 01

Severity
normal

Exploitable
local

Bugzilla entries