aview: Insecure temporary file usage — GLSA 200812-14

An insecure temporary file usage has been reported in aview, leading to symlink attacks.

Affected Packages

media-gfx/aview on all architectures
Affected versions < 1.3.0_rc1-r1
Unaffected versions >= 1.3.0_rc1-r1

Background

aview is an ASCII image viewer and animation player.

Description

Dmitry E. Oboukhov reported that aview uses the "/tmp/aview$$.pgm" file in an insecure manner when processing files.

Impact

A local attacker could perform symlink attacks to overwrite arbitrary files on the system with the privileges of the user running the application.

Workaround

There is no known workaround at this time.

Resolution

All aview users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=media-gfx/aview-1.3.0_rc1-r1"

References

Release Date
December 14, 2008

Latest Revision
December 14, 2008: 01

Severity
normal

Exploitable
local

Bugzilla entries