Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Mageia 8, 9: MGASA-2023-0297 Moderate: Cadence Temp File Exploit

mageia
Calendar Grey October 22, 2023
Dist Mageia Esm H88
MGASA-2023-0298 addresses vulnerabilities in Cadence linked to improper handling of temporary files and risks stemming from local attacks.
Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/.cadence-aloop-daemon.x Temporary File

Summary

Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/.cadence-aloop-daemon.x Temporary File. The file is used even if it has been created by a local adversary before Cadence started. The adversary can then delete the file, disrupting Cadence. (CVE-2023-43782)
Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/cadence-wineasio.reg Temporary File. The filename is used even if it has been created by a local adversary before Cadence started. The adversary can leverage this to create or overwrite files via a symlink attack. In some kernel configurations, code injection into the Wine registry is possible. (CVE-2023-43783)

References

- https://bugs.mageia.org/show_bug.cgi?id=32361

- https://www.openwall.com/lists/oss-security/2023/10/05/4

- https://www.cve.org/CVERecord?id=CVE-2023-43782

- https://www.cve.org/CVERecord?id=CVE-2023-43783

Resolution

SRPMS

- 9/core/cadence-0.9.1-7.1.mga9

- 8/core/cadence-0.9.1-3.1.mga8

Publication date: 22 Oct 2023
URL: https://advisories.mageia.org/MGASA-2023-0297.html
Type: security
CVE: CVE-2023-43782, CVE-2023-43783

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here