Re: [Qemu-devel] [oss-security] QEMU 2.3.0 tmp vulns CVE request

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [oss-security] QEMU 2.3.0 tmp vulns CVE request

From:	Jakub Wilk
Subject:	Re: [Qemu-devel] [oss-security] QEMU 2.3.0 tmp vulns CVE request
Date:	Sat, 16 May 2015 16:38:29 +0200
User-agent:	Mutt/1.5.23 (2014-03-12)

* Michael Tokarev <address@hidden>, 2015-05-16, 11:45:

./net/slirp.c:
   snprintf(s->smb_dir, sizeof(s->smb_dir), "/tmp/qemu-smb.%ld-%d",
            (long)getpid(), instance++);
This one is real, used for -smb argument, to start smbd, making itsconfiguration. Maybe tmpnam() should be used here.


"Never use this function.  Use mkstemp(3) or tmpfile(3) instead."

--
Jakub Wilk

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Qemu-devel] [oss-security] QEMU 2.3.0 tmp vulns CVE request, Michael Tokarev, 2015/05/16
- Re: [Qemu-devel] [oss-security] QEMU 2.3.0 tmp vulns CVE request, Jakub Wilk <=

Prev by Date: Re: [Qemu-devel] [PATCH 02/17] ipmi: Add a PC ISA type structure
Next by Date: Re: [Qemu-devel] [PATCH 1/2] qobject: Use 'bool' for qbool
Previous by thread: Re: [Qemu-devel] [oss-security] QEMU 2.3.0 tmp vulns CVE request
Next by thread: [Qemu-devel] [PATCH] target-s390x: fix CC computation for EX instruction
Index(es):
- Date
- Thread