Candidate: CVE-2017-18196
PublicDate: 2018-02-23 21:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18196
 https://bugs.debian.org/885704
Description:
 Leptonica 1.74.4 constructs unintended pathnames (containing duplicated
 path components) when operating on files in /tmp subdirectories, which
 might allow local users to bypass intended file restrictions by leveraging
 access to a directory located deeper within the /tmp directory tree, as
 demonstrated by /tmp/ANY/PATH/ANY/PATH/input.tif.
Ubuntu-Description:
 It was discovered that Leptonica incorrectly handled path names. An attacker
 could possibly use this issue to obtain sensitive information.
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885704
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N [3.3 LOW]


Patches_leptonlib:
upstream_leptonlib: released (1.74.4-2)
precise/esm_leptonlib: DNE
trusty_leptonlib: not-affected (code not present)
trusty/esm_leptonlib: not-affected (code not present)
xenial_leptonlib: ignored (end of standard support, was needed)
artful_leptonlib: ignored (reached end-of-life)
bionic_leptonlib: not-affected (1.75.3-2)
cosmic_leptonlib: not-affected (1.75.3-2)
disco_leptonlib: not-affected (1.75.3-2)
eoan_leptonlib: not-affected (1.75.3-2)
focal_leptonlib: not-affected (1.75.3-2)
groovy_leptonlib: not-affected (1.75.3-2)
hirsute_leptonlib: not-affected (1.75.3-2)
impish_leptonlib: not-affected (1.75.3-2)
jammy_leptonlib: not-affected (1.75.3-2)
devel_leptonlib: not-affected (1.75.3-2)