Mandrake Linux Security Advisory : esound (MDKSA-2000:051)
Medium Nessus Plugin ID 61841
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA problem exists with the esound daemon, which is used in GNOME and responsible for multiplexing access to audio devices. Versions of esound prior to and including 0.2.19 create a world-writable directory in /tmp called .esd which is owned by the user running esound. This directory is used to store a unix domain socket. The socket is also created world-writable, so a race condition exists in the creation of this socket which allows a local attacker to cause an arbitrary file or directory owned by the user running esound to become world-writable. This update contains a patch from FreeBSD which creates ~/.esd as the temporary directory to use and makes the unix domain socket read and write only to the user.
SolutionUpdate the affected esound and / or esound-devel packages.