SB2023021688 - Multiple vulnerabilities in Eternal Terminal

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Incorrect default permissions (CVE-ID: CVE-2022-48258)

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to incorrect default permissions for logfiles set by the application. A local user with access to the system can view contents of files and gain access to sensitive information.

2) Insecure Temporary File (CVE-ID: CVE-2023-23558)

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to insecure temporary file handling. A local user can create the "/tmp/.sentry-native-etserver" file with world-writable permissions and gain access to sensitive information stored in it by the application.

3) Insecure temporary file (CVE-ID: CVE-2022-48257)

The vulnerability allows a local user to disable application log.

The vulnerability exists due to etserver and etclient use predictable logfile names in /tmp. A local user can create a log file before the applications and disable logging.

Remediation

Install update from vendor's website.

References

• https://github.com/MisterTea/EternalTerminal/issues/555
• https://github.com/MisterTea/EternalTerminal/pull/556
• http://www.openwall.com/lists/oss-security/2023/02/16/1
• https://bugzilla.suse.com/show_bug.cgi?id=1207126
• https://github.com/MisterTea/EternalTerminal