CVE-2018-7441
Published: 02/23/2018 21:29:00
Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might allow local users to overwrite arbitrary files or have unspecified other impact by creating files in advance or winning a race condition, as demonstrated by /tmp/junk_split_image.ps in prog/splitimage2pdf.c.
HIGH
CVSS v3: 7
CVSS v3: 7
Status
| DocFilters Release | Package | State | Justification | Comment |
|---|---|---|---|---|
| 25.1 | leptonica (1.84.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 24.4 | leptonica (1.84.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 24.4.0 | leptonica (1.84.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 24.3 | leptonica (1.84.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 24.2.1 | leptonica (1.84.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 24.2 | leptonica (1.84.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 24.1 | leptonica (1.83.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 23.3 | leptonica (1.83.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 23.2.1 | leptonica (1.83.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 23.2 | leptonica (1.83.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 23.1 | leptonica (1.83.1) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 22.4 | leptonica (1.71) | Not Affected | Code Not Reachable | Unused code block. Covers temp file in utility programs |
| 22.3 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 22.2 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 22.1 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 21.11.1 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 21.11 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 21.8.1 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 21.8 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 21.5.1 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 21.5.0 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 21.2.0 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 11.4.20 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 11.4.19.3667 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 11.4.18.3599 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 11.4.17 | leptonica (1.71) | Not Affected | Unused code block. Covers temp file in utility programs | |
| 11.4.16.3445 | leptonica (1.71) | Needs Triage | ||
| 11.4.15.3368 | leptonica (1.71) | Needs Triage | ||
| 11.4.14.3263 | leptonica (1.71) | Needs Triage | ||
| 11.4.13.3179 | leptonica (1.71) | Needs Triage | ||
| 11.4.12.3054 | leptonica (1.71) | Needs Triage | ||
| 11.4.11.3040 | leptonica (1.71) | Needs Triage | ||
| 11.4.11.2990 | leptonica (1.71) | Needs Triage | ||
| 11.4.10.2934 | leptonica (1.71) | Needs Triage | ||
| 11.4.9.2878 | leptonica (1.71) | Needs Triage | ||
| 11.4.8.2822 | leptonica (1.71) | Needs Triage |
Severity score breakdown
Attack Complexity
HIGH
Attack Vector
LOCAL
Availability Impact
HIGH
Base Score
7
Base Severity
HIGH
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Privileges Required
LOW
Scope
UNCHANGED
User Interaction
NONE
Vector String
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Version
3.0