Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 1595819 - (CVE-2018-12713) CVE-2018-12713 gimp: predictable temporary file name in test-xcf.c unit test
CVE-2018-12713 gimp: predictable temporary file name in test-xcf.c unit test
Status: NEW
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
impact=low,public=20180621,reported=2...
: Security
Depends On: 1595820 1596112 1595821
Blocks: 1595822
  Show dependency treegraph
 
Reported: 2018-06-27 10:46 EDT by Laura Pardo
Modified: 2018-06-28 05:25 EDT (History)
3 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Laura Pardo 2018-06-27 10:46:43 EDT 
A flaw was found in GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the gimp_write_and_read_file function in app/tests/test-xcf.c. This might be leveraged by attackers to overwrite files or read file content that was intended to be private.


References:
https://gitlab.gnome.org/GNOME/gimp/issues/1689

Patch:
https://github.com/GNOME/gimp/commit/c21eff4b031acb04fb4dfce8bd5fdfecc2b6524f
Comment 1 Laura Pardo 2018-06-27 10:47:41 EDT 
Created gimp tracking bugs for this issue:

Affects: fedora-all [bug 1595820]
Comment 4 Stefan Cornelius 2018-06-28 05:21:10 EDT 
Statement:

This issue did affect the versions of gimp as shipped with Red Hat Enterprise Linux 7. However, as this is an issue in a unit test, it is not a problem if you are using the precompiled gimp package. This is only a problem if you recompile gimp using the src.rpm/SPEC file. Even then it's only a problem if you do not make use of isolating build tools like mock, but instead use rpmbuild directly.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.