KDE Library DCOPIDLING Insecure Temporary File Creation Vulnerability

Bugtraq ID:	12525
Class:	Design Error
CVE:	CVE-2005-0365
Remote:	No
Local:	Yes
Published:	Feb 11 2005 12:00AM
Updated:	Jul 12 2009 10:06AM
Credit:	The QiLinux 'autospec' tool was used to discover this issue.
Vulnerable:	Redhat Fedora Core3 Redhat Fedora Core2 Mandriva Linux Mandrake 10.1 x86_64 Mandriva Linux Mandrake 10.1 Mandriva Linux Mandrake 10.0 AMD64 Mandriva Linux Mandrake 10.0 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 KDE kdelibs 3.3.2 + Gentoo Linux KDE kdelibs 3.3.1 + Redhat Desktop 4.0 + Redhat Enterprise Linux Desktop version 4 + Redhat Enterprise Linux AS 4 + Redhat Enterprise Linux ES 4 + Redhat Enterprise Linux WS 4 KDE KDE 3.3.2 + Debian Linux 3.1 sparc + Debian Linux 3.1 s/390 + Debian Linux 3.1 s/390 + Debian Linux 3.1 s/390 + Debian Linux 3.1 ppc + Debian Linux 3.1 ppc + Debian Linux 3.1 ppc + Debian Linux 3.1 mipsel + Debian Linux 3.1 mipsel + Debian Linux 3.1 mipsel + Debian Linux 3.1 mips + Debian Linux 3.1 mips + Debian Linux 3.1 mips + Debian Linux 3.1 m68k + Debian Linux 3.1 m68k + Debian Linux 3.1 m68k + Debian Linux 3.1 ia-64 + Debian Linux 3.1 ia-64 + Debian Linux 3.1 ia-64 + Debian Linux 3.1 ia-32 + Debian Linux 3.1 ia-32 + Debian Linux 3.1 ia-32 + Debian Linux 3.1 hppa + Debian Linux 3.1 hppa + Debian Linux 3.1 hppa + Debian Linux 3.1 arm + Debian Linux 3.1 arm + Debian Linux 3.1 arm + Debian Linux 3.1 amd64 + Debian Linux 3.1 amd64 + Debian Linux 3.1 amd64 + Debian Linux 3.1 alpha + Debian Linux 3.1 alpha + Debian Linux 3.1 alpha + Debian Linux 3.1 + Debian Linux 3.1 + Debian Linux 3.1 KDE KDE 3.3.1 + Redhat Fedora Core3 KDE KDE 3.3 KDE KDE 3.2.3 KDE KDE 3.2.2 + KDE KDE 3.2.2 + Redhat Fedora Core2 KDE KDE 3.2.1 KDE KDE 3.2 ALT Linux ALT Linux Junior 2.3 ALT Linux ALT Linux Compact 2.3
Not Vulnerable:	KDE KDE 3.4

KDE Library DCOPIDLING Insecure Temporary File Creation Vulnerability

A local insecure file creation vulnerability affects KDE Library 'dcopidling'. This issue is due to a failure of the application to validate the existence of a file prior to writing to it.

An attacker may leverage this issue to corrupt arbitrary files with the privileges of a user that activates an application that implements the affected script.

KDE Library DCOPIDLING Insecure Temporary File Creation Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

KDE Library DCOPIDLING Insecure Temporary File Creation Vulnerability

Solution:
Mandrake has released advisory MDKSA-2005:045 to address this issue. Please see the attached advisory for details on obtaining and applying fixes.

The vendor has released a patch dealing with this issue.

Gentoo Linux has released an advisory dealing with this issue. Gentoo advises that all kdelibs users should upgrade to the latest version by executing the following commands with superuser privileges:

emerge --sync
emerge --ask --oneshot --verbose kde-base/kdelibs

For more information, please see the referenced Gentoo advisory.

KDE has released an advisory (20050316-3) to address this issue. Please see the advisory in Web references for more information.

Mandrake Linux has released a second advisory MDKSA-2005:058 with updates addressing this issue. Please see the referenced advisory for information on obtaining and applying fixes.

Red Hat has released advisory RHSA-2005:325-07 and fixes to address this issue on Red Hat Linux Enterprise platforms. Customers who are affected by this issue are advised to apply the appropriate updates. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisory for additional information.

Fedora advisories FEDORA-2005-244 and FEDORA-2005-245 are available to address various issues in Fedora Core 2 and Fedora Core 3 affecting kdelibs. Please see the referenced advisories for more information.

ALT Linux has released updates dealing with this and other issues. Please see the reference section for more information.

Conectiva Linux has released advisory CLA-2005:953 to address this, and other issues. Please see the referenced advisory for further information.


KDE KDE 3.2

• KDE post-3.2.3-kdelibs-dcop.patch
  ftp://ftp.kde.org/pub/kde/security_patches


• KDE KDE 3.4
  http://www.kde.org/download/


• Mandrake kdelibs-common-3.2-36.10.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2-36.10.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2-36.10.C30mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2-36.10.C30mdk.x86_64.rpm
  Mandrake Corporate Server 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2-36.12.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2-36.12.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2-36.12.C30mdk.i586.rpm
  Mandrake Corporate 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2-36.12.C30mdk.x86_64.rpm
  Mandrake Corporate 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-3.2-36.10.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-3.2-36.10.C30mdk.x86_64.rpm
  Mandrake Corporate Server 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-3.2-36.12.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-3.2-36.12.C30mdk.x86_64.rpm
  Mandrake Corporate 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-devel-3.2-36.10.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-devel-3.2-36.10.C30mdk.x86_64.rpm
  Mandrake Corporate Server 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-devel-3.2-36.12.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-devel-3.2-36.12.C30mdk.x86_64.rpm
  Mandrake Corporate 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2-36.10.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2-36.10.C30mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2-36.12.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2-36.12.C30mdk.i586.rpm
  Mandrake Corporate 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-devel-3.2-36.10.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-devel-3.2-36.10.C30mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-devel-3.2-36.12.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-devel-3.2-36.12.C30mdk.i586.rpm
  Mandrake Corporate 3.0
  http://www.mandrakesecure.net/en/ftp.php

KDE KDE 3.2.1

• KDE post-3.2.3-kdelibs-dcop.patch
  ftp://ftp.kde.org/pub/kde/security_patches


• KDE KDE 3.4
  http://www.kde.org/download/

KDE KDE 3.2.2

• Fedora kdelibs-3.2.2-14.FC2.i386.rpm
  RedHat Fedora Core 2
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/


• Fedora kdelibs-3.2.2-14.FC2.x86_64.rpm
  RedHat Fedora Core 2
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/


• Fedora kdelibs-debuginfo-3.2.2-14.FC2.i386.rpm
  RedHat Fedora Core 2
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/


• Fedora kdelibs-debuginfo-3.2.2-14.FC2.x86_64.rpm
  RedHat Fedora Core 2
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/


• Fedora kdelibs-devel-3.2.2-14.FC2.i386.rpm
  RedHat Fedora Core 2
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/


• Fedora kdelibs-devel-3.2.2-14.FC2.x86_64.rpm
  RedHat Fedora Core 2
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/


• KDE post-3.2.3-kdelibs-dcop.patch
  ftp://ftp.kde.org/pub/kde/security_patches


• KDE KDE 3.4
  http://www.kde.org/download/

KDE KDE 3.2.3

• KDE post-3.2.3-kdelibs-dcop.patch
  ftp://ftp.kde.org/pub/kde/security_patches


• KDE KDE 3.4
  http://www.kde.org/download/


• Mandrake kdelibs-common-3.2.3-103.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2.3-103.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2.3-104.2.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kdelibs-common-3.2.3-104.2.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-3.2.3-103.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-3.2.3-104.2.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-devel-3.2.3-103.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64kdecore4-devel-3.2.3-104.2.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2.3-103.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2.3-103.1.101mdk.i586.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2.3-104.2.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-3.2.3-104.2.101mdk.i586.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-devel-3.2.3-103.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libkdecore4-devel-3.2.3-104.2.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php

KDE KDE 3.3

• Fedora kdelibs-3.3.1-2.9.FC3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora kdelibs-3.3.1-2.9.FC3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora kdelibs-debuginfo-3.3.1-2.9.FC3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora kdelibs-debuginfo-3.3.1-2.9.FC3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora kdelibs-devel-3.3.1-2.9.FC3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora kdelibs-devel-3.3.1-2.9.FC3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• KDE post-3.3.2-kdelibs-dcop.patch
  ftp://ftp.kde.org/pub/kde/security_patches


• KDE KDE 3.4
  http://www.kde.org/download/

KDE KDE 3.3.1

• KDE post-3.3.2-kdelibs-dcop.patch
  ftp://ftp.kde.org/pub/kde/security_patches


• KDE KDE 3.4
  http://www.kde.org/download/

KDE kdelibs 3.3.2

• KDE dcopidlng-fix
  http://bugs.kde.org/attachment.cgi?id=9205&action=view

KDE KDE 3.3.2

• KDE post-3.3.2-kdelibs-dcop.patch
  ftp://ftp.kde.org/pub/kde/security_patches


• KDE KDE 3.4
  http://www.kde.org/download/

KDE Library DCOPIDLING Insecure Temporary File Creation Vulnerability

References:

• [security-announce] I: updated packages available (ALT Linux)
  
• 20050316-3 - Insecure temporary file creation by dcopidlng (KDE)
  
• Bug 97608: insecure temporary file creation (KDE)
  
• DCOP: Desktop COmmunications Protocol (KDE)
  
• KDE Home Page (KDE)
  
• RHSA-2005:325-07 - kdelibs security update (RedHat)