Re: gEDA-dev: gEDA 1.4.2 fixes

[Wojciech Kazubski <wk0-at-NOSPAMo2_dot_pl>]

> If there are any other simple, bug-fix-only, non-ABI-breaking fixes
> people can think of for 1.4.2, please add them to the wiki, or poke me
> and I'll do it.

Few days ago security problem was discovered in gnetlist and labelled as 
CVE-2008-5148. This is caused by sch2eaglepos.sh creating a temporary file in 
inescure way (predictible name) and this makes possible to overwrite 
arbitrary file in the system (symlink attack).

Chitlesh Goorah from Fedora created a patch that corrects this by using mktemp 
to create temporary file. The essential part of the patch changes the lines 
20 and 21 of sch2eaglepos.sh from:
...[snip]...
TMP=/tmp/$$
grep -B1 refdes= "$FNAME" |sed 's/=/ /' | cut -d" " -f2,3 |grep -v '^--' 
>/tmp/$$
...[snip]...
to:
...[snip]...
TMP=`mktemp`
grep -B1 refdes= "$FNAME" |sed 's/=/ /' | cut -d" " -f2,3 |grep -v '^--' > 
$TMP
...[snip]...

The patch should be applied before next release but I don't know if mktemp is 
avalilable in all OS-es (BSD, Windows?).

Wojciech Kazubski



_______________________________________________
geda-dev mailing list
geda-dev@moria.seul.org
http://www.seul.org/cgi-bin/mailman/listinfo/geda-dev