GNU bug report logs - #4291
23.1; doc-view-mode temporary directory vulnerable to denial of service

Previous Next

Package: emacs;

Reported by: David Bremner <bremner-dated-1252800134.2fccb3 <at> pivot.cs.unb.ca>

Date: Sun, 30 Aug 2009 00:10:05 UTC

Severity: minor

Tags: fixed

Fixed in version 24.1

Done: Lars Magne Ingebrigtsen <larsi <at> gnus.org>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: Glenn Morris <rgm <at> gnu.org>
To: David Bremner <bremner-dated-1252800134.2fccb3 <at> pivot.cs.unb.ca>
Cc: 4291 <at> debbugs.gnu.org
Subject: bug#4291: 23.1; doc-view-mode temporary directory vulnerable to denial of service
Date: Sun, 30 Aug 2009 21:42:51 -0400

David Bremner wrote:

> By default doc-view-mode makes a directory /tmp/docview$uid .  Since
> this is easily predictable, a malicious person could cause docview to
> fail simply by creating a directory with the same name. 

Couldn't they do the same thing by simply filling /tmp with junk, no
matter what filename is used?

(Emacs server also uses the same name every time AFAIK.)

This bug report was last modified 13 years and 314 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #4291 23.1; doc-view-mode temporary directory vulnerable to denial of service

GNU bug report logs - #4291
23.1; doc-view-mode temporary directory vulnerable to denial of service