CVE-2018-7441 — Race Condition in Leptonica

CWE-362 — Race Condition8 documents5 sources

Severity

7.0HIGHNVD

EPSS

0.0%

top 85.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Leptonlib Leptonica

Timeline

PublishedFeb 23

Latest updateMay 14

Description

Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might allow local users to overwrite arbitrary files or have unspecified other impact by creating files in advance or winning a race condition, as demonstrated by /tmp/junk_split_image.ps in prog/splitimage2pdf.c.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages2 packages

▶NVDleptonica/leptonica1.75.3

▶debiandebian/leptonlib< leptonlib 1.76.0-1 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-ffph-9q4q-c343: Leptonica through 1↗2022-05-14

▶

OSV

CVE-2018-7441: Leptonica through 1↗2018-02-23

▶

📋Vendor Advisories

Debian

CVE-2018-7441: leptonlib - Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might allow local ...↗2018

▶

💬Community

Bugzilla

CVE-2018-7441 mingw-leptonica: leptonica: hardcoded /tmp paths [fedora-all]↗2018-02-27

▶

Bugzilla

CVE-2018-7441 leptonica: hardcoded /tmp paths [epel-all]↗2018-02-27

▶

Bugzilla

CVE-2018-7441 leptonica: hardcoded /tmp paths [fedora-all]↗2018-02-27

▶

Bugzilla

CVE-2018-7441 leptonica: hardcoded /tmp paths↗2018-02-27

▶