Package: mozplugger Version: 1.14.2-4 Tags: security Severity: minor Hi,
Based on the changelog, since version 1.14.2-4 mozplugger is built with - DDEBUG which enables the creation of 'mozdebug'. However, this file is created in an insecure way, with a constant name, in $MOZPLUGGER_TMP, $TMPDIR, or $HOME/tmp/. Whatever env var is found first, in that order. A local attacker may use this vulnerability to append to another user's files, corrupting them. This is a fairly minor issue since it requires $MOZPLUGGER_TMP or $TMPDIR to be set and to a world-writeable directory, but it should be fixed nevertheless. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org