Bug 106039

Summary: Insecure temporary files in /sbin/rename_netiface
Product: [openSUSE] SUSE LINUX 10.0 Reporter: Stefan Nordhausen <nordhaus>
Component: SecurityAssignee: Security Team bot <security-team>
Status: RESOLVED DUPLICATE QA Contact: E-mail List <qa-bugs>
Severity: Major    
Priority: P5 - None    
Version: Beta 2   
Target Milestone: ---   
Hardware: Other   
OS: All   
Whiteboard:
Found By: Other Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Stefan Nordhausen 2005-08-21 08:55:43 UTC 
/sbin/rename_netiface insecurely creates the file /tmp/rename_netiface.log,
which is easily exploitable (just did it). The entire script should be converted
to using mktemp.
Comment 1 Ludwig Nussel 2005-08-22 07:15:14 UTC 

*** This bug has been marked as a duplicate of 104606 ***