Launchpad.net

CVE 2008-3699

The MagnatuneBrowser::listDownloadComplete function in magnatunebrowser/magnatunebrowser.cpp in Amarok before 1.4.10 allows local users to overwrite arbitrary files via a symlink attack on the album_info.xml temporary file.

Related bugs and status

CVE-2008-3699 (Candidate) is related to these bugs:

Bug #257993: [CVE-2008-3699] Insecure creation of magnatune temp files

		In	Importance	Status
257993	[CVE-2008-3699] Insecure creation of magnatune temp files	amarok (Ubuntu)	Medium	Fix Released
257993	[CVE-2008-3699] Insecure creation of magnatune temp files	Amarok	Unknown	Fix Released
257993	[CVE-2008-3699] Insecure creation of magnatune temp files	amarok (Ubuntu Gutsy)	Undecided	Fix Released
257993	[CVE-2008-3699] Insecure creation of magnatune temp files	amarok (Ubuntu Hardy)	Undecided	Fix Released
257993	[CVE-2008-3699] Insecure creation of magnatune temp files	The Dell Mini Project	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

MISC: http://bugs.debian.org...
CONFIRM: http://amarok.kde.org/...
MANDRIVA: MDVSA-2008:172
SECUNIA: 31418
SECUNIA: 31663
FEDORA: FEDORA-2008-7719
FEDORA: FEDORA-2008-7739
SECUNIA: 31839
GENTOO: GLSA-200809-08
UBUNTU: USN-657-1
BID: 30662
SECUNIA: 32357
VUPEN: ADV-2008-2338
CONFIRM: http://websvn.kde.org/...
SLACKWARE: SSA:2008-241-01
XF: amarok-magnatunebrowse...