*** This bug is a security vulnerability *** Public security bug reported:
The socket placed in /tmp is predictable and public-writable. Therefore if one user placed a symlink to another socket instead of socket for another use then said another user will either be unable to get menu, or will receive menu of some other user. Upstream released a fix for this issue: https://git.lxde.org/gitweb/?p=lxde/menu- cache.git;a=commitdiff;h=56f66684592abf257c4004e6e1fff041c64a12ce ** Affects: menu-cache (Ubuntu) Importance: Undecided Assignee: Simon Quigley (tsimonq2) Status: In Progress ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-8933 ** Information type changed from Public to Public Security ** Changed in: menu-cache (Ubuntu) Assignee: (unassigned) => Simon Quigley (tsimonq2) ** Changed in: menu-cache (Ubuntu) Status: New => In Progress -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1703564 Title: Socket may be blocked by another user To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/menu-cache/+bug/1703564/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
