Launchpad.net

CVE 2007-5940

feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file.

Related bugs and status

CVE-2007-5940 (Candidate) is related to these bugs:

Bug #172265: [feynmf] Insecure temporary file creation

		In	Importance	Status
172265	[feynmf] Insecure temporary file creation	feynmf (Ubuntu)	Undecided	Fix Released
172265	[feynmf] Insecure temporary file creation	feynmf (Gentoo Linux)	Low	Fix Released
172265	[feynmf] Insecure temporary file creation	feynmf (Ubuntu Dapper)	Undecided	Fix Released
172265	[feynmf] Insecure temporary file creation	feynmf (Ubuntu Edgy)	Undecided	Fix Released
172265	[feynmf] Insecure temporary file creation	feynmf (Ubuntu Feisty)	Undecided	Fix Released
172265	[feynmf] Insecure temporary file creation	feynmf (Ubuntu Hardy)	Undecided	Fix Released
172265	[feynmf] Insecure temporary file creation	feynmf (Ubuntu Gutsy)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://bugs.gentoo.org...
GENTOO: GLSA-200711-32
BID: 26507
SECUNIA: 27737
SECUNIA: 27739
OSVDB: 42397
VUPEN: ADV-2007-3974