[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug-gv] Re: Bug#583316: /usr/bin/gv: Insecure gs workaround "gs -P-"

From: Markus Steinborn
Subject: [bug-gv] Re: Bug#583316: /usr/bin/gv: Insecure gs workaround "gs -P-"
Date: Sat, 29 May 2010 13:31:13 +0200
User-agent: Mozilla/5.0 (X11; U; Linux i686; de; rv: Gecko/20100317 SeaMonkey/2.0.4

address@hidden schrieb:
Sorry, but my ltrace or strace shows otherwise: gv does NOT use mkstemp,
gv does NOT open the file but gs does. (Thankfully gv seems to set a sane
"umask 077" before invoking gs.)
Well, that may be explained that debian lenny is shipped with a rather old version of GNU gv. As upstream maintainer, I did my test with an up to date verasion of GNU gv (because that is what I need for the development of GNU gv).

The following commit contains the fix (you see it is rather old):

commit a17416c462e5b6c9cc7c98c5ea01f580152f2da9
Author: Markus Steinborn <address@hidden>
Date:   Sat Jul 19 16:21:35 2008 +0000

    Use mkstemp for getting the temporary filename if available

Perhaps these changes may be packported by debian (if you know debian stable you know about the changes that lenny will get an up to date GNU gv, so backporting looks like the only option. ).

That patch applies to GNU gv 3.6.5 with some fuzz but well (except for the update of the Changelog, but that should not be a problem).

If gv used mkstemp as you say, opening and pre-creating the file as I
suggested, then things would be "right".
Well, then I can close the bug upstream. But for debian, it has to be kept open - as lenny is vulnerable.


Markus Steinborn
GNU gv maintainer

reply via email to

[Prev in Thread] Current Thread [Next in Thread]