Symlink attack in file.c?

From: Leonard den Ottolander <leonard den ottolander nl>
To: MC development <mc-devel gnome org>
Subject: Symlink attack in file.c?
Date: Fri, 16 Jun 2006 01:53:56 +0200

Hi,

Something I came across a couple of times this week, just now in
relation to an RFE regarding file permissions on copying fat files in
RHs bugzilla
(https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195614):
http://cvs.savannah.gnu.org/viewcvs/mc/src/file.c?root=mc&r1=1.28&r2=1.29

A commit by "pavel" (Machek?) who added the remark
"FIXME: You have security hole here, btw. Imagine copying to /tmp and
symlink attack :-("

Is there anybody that can explain to me what he's concerned about and if
that is still an issue? If so this is a rather long standing hole... If
not, let's get rid of that warning.

Leonard.

-- 
mount -t life -o ro /dev/dna /genetic/research

Follow-Ups:
- Re: Symlink attack in file.c?
  - From: Pavel Roskin

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]