Detections
Analytics

Debian DSA-679-1 : toolchain-source - insecure temporary files

medium Nessus Plugin ID 16383

Synopsis

The remote Debian host is missing a security-related update.

Description

Sean Finney discovered several insecure temporary file uses in toolchain-source, the GNU binutils and GCC source code and scripts.
These bugs can lead a local attacker with minimal knowledge to trick the admin into overwriting arbitrary files via a symlink attack. The problems exist inside the Debian-specific tpkg-* scripts.

Solution

Upgrade the toolchain-source package.

For the stable distribution (woody) these problems have been fixed in version 3.0.4-1woody1.

See Also

http://www.debian.org/security/2005/dsa-679

Plugin Details

Severity: Medium

ID: 16383

File Name: debian_DSA-679.nasl

Version: 1.19

Type: local

Agent: unix

Published: 2/14/2005

Updated: 1/4/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.2

CVSS v2

Risk Factor: Medium

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:toolchain-source, cpe:/o:debian:debian_linux:3.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 2/14/2005

Vulnerability Publication Date: 2/14/2005

Reference Information

CVE: CVE-2005-0159

DSA: 679