Red Hat Bugzilla – Bug 148823
CAN-2005-0365 dcopidlng insecure temporary file usage
Last modified: 2007-11-30 17:11:00 EST
*** This bug has been split off bug 148822 ***
------- Original comment by Josh Bressers (Security Response Team) on 2005.02.15
The dcopidlng script in KDE 3.3.2 creates temporary files with predictable
filenames, which allows local users to overwrite arbitrary files via a symlink
The kde BTS has more information:
It seems this issue may affect FC2 as well.
it's now fixed in kdelibs-3.3.1-2.7.FC3, which is built in fc3-updates-candidate.
Thanks for the bug report. This particular bug was fixed and a update package
was published for download. Please feel free to report any further bugs you find.