Advisories » MGASA-2023-0297

Updated cadence packages fix security vulnerabilities

Publication date: 22 Oct 2023
Modification date: 22 Oct 2023
Type: security
Affected Mageia releases : 8 , 9
CVE: CVE-2023-43782 , CVE-2023-43783

Description

Cadence through 0.9.2 2023-08-21 uses an Insecure
/tmp/.cadence-aloop-daemon.x Temporary File. The file is used even if it
has been created by a local adversary before Cadence started. The
adversary can then delete the file, disrupting Cadence. (CVE-2023-43782)

Cadence through 0.9.2 2023-08-21 uses an Insecure
/tmp/cadence-wineasio.reg Temporary File. The filename is used even if
it has been created by a local adversary before Cadence started. The
adversary can leverage this to create or overwrite files via a symlink
attack. In some kernel configurations, code injection into the Wine
registry is possible. (CVE-2023-43783)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=32361
• https://www.openwall.com/lists/oss-security/2023/10/05/4
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43782
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43783

SRPMS

8/core

• cadence-0.9.1-3.1.mga8

9/core

• cadence-0.9.1-7.1.mga9