Amarok: Insecure temporary file creation — GLSA 200809-08

Amarok uses temporary files in an insecure manner, allowing for a symlink attack.

Affected Packages

media-sound/amarok on all architectures
Affected versions < 1.4.10
Unaffected versions >= 1.4.10

Background

Amarok is an advanced music player.

Description

Dwayne Litzenberger reported that the MagnatuneBrowser::listDownloadComplete() function in magnatunebrowser/magnatunebrowser.cpp uses the album_info.xml temporary file in an insecure manner.

Impact

A local attacker could perform a symlink attack to overwrite arbitrary files on the system with the privileges of the user running the application.

Workaround

There is no known workaround at this time.

Resolution

All Amarok users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=media-sound/amarok-1.4.10"

References

Release Date
September 08, 2008

Latest Revision
September 08, 2008: 01

Severity
normal

Exploitable
local

Bugzilla entries