Firewall Builder: Privilege escalation
Gentoo Linux Security Advisory
||GLSA 201201-11 / fwbuilder
||January 23, 2012
||January 23, 2012: 1
All supported architectures
Insecure temporary file usage in Firewall Builder could allow
attackers to overwrite arbitrary files.
Firewall Builder is a GUI for easy management of multiple firewall
Two vulnerabilities in Firewall Builder allow the iptables and
fwb_install scripts to use temporary files insecurely.
A local attacker could possibly overwrite arbitrary files with the
privileges of the user running Firewall Builder.
There is no known workaround at this time.
All Firewall Builder users should upgrade to the latest version:
Code Listing 3.1: Resolution
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-firewall/fwbuilder-3.0.7"
NOTE: This is a legacy GLSA. Updates for all affected architectures are
available since March 09, 2010. It is likely that your system is already
no longer affected by this issue.