Insecure temp file usage in Ubuntu UI toolkit
CVE-2014-1420

3.8LOW

Key Information:

Vendor: Canonical
Status: Ubuntu-ui-toolkit
Vendor: CVE Published:; 11 September 2020

Summary

On desktop, Ubuntu UI Toolkit's StateSaver would serialise data on tmp/ files which an attacker could use to expose potentially sensitive data. StateSaver would also open files without the O_EXCL flag. An attacker could exploit this to launch a symlink attack, though this is partially mitigated by symlink and hardlink restrictions in Ubuntu. Fixed in 1.1.1188+14.10.20140813.4-0ubuntu1.

Affected Version(s)

ubuntu-ui-toolkit 1.1.1188 < 1.1.1188+14.10.20140813.4-0ubuntu1

References

https://launchpad.net/bugs/1348241

vendor-advisoryx_refsource_UBUNTU

http://bazaar.launchpad.net/~ubuntu-sdk-team/ubuntu-ui-to...

vendor-advisoryx_refsource_UBUNTU

CVSS V3.1

Score:

3.8

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Sep 11, 2020
Vulnerability Reserved
Jan 13, 2014

Credit

Olivier Tilloy