CVE-2023-6597

EUVD-2023-58821
An issue was found in the CPython `tempfile.TemporaryDirectory` class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.

The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which can run privileged programs are potentially able to modify permissions of files referenced by symlinks in some circumstances.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
HIGH
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
PSFCNA
7.8 HIGH
LOCAL
HIGH
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
Debian logo
Debian Releases
Debian Product
Codename
pypy3
bookworm
7.3.11+dfsg-2+deb12u2
fixed
bullseye
vulnerable
bullseye (security)
7.3.5+dfsg-2+deb11u4
fixed
buster
no-dsa
sid
7.3.17+dfsg-3
fixed
trixie
7.3.17+dfsg-3
fixed
python2.7
bullseye
2.7.18-8+deb11u1
fixed
buster
no-dsa
python3.11
bookworm
3.11.2-6+deb12u4
fixed
bookworm (security)
3.11.2-6+deb12u3
fixed
buster
no-dsa
python3.12
buster
no-dsa
sid
3.12.8-3
fixed
trixie
3.12.8-3
fixed
python3.9
bullseye
vulnerable
bullseye (security)
3.9.2-1+deb11u2
fixed
buster
no-dsa
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
python2.7
bionic
not-affected
focal
not-affected
jammy
not-affected
mantic
dne
noble
dne
oracular
dne
trusty
not-affected
xenial
not-affected
python3.10
focal
dne
jammy
Fixed 3.10.12-1~22.04.4
released
mantic
dne
noble
dne
oracular
dne
python3.11
focal
dne
jammy
needs-triage
mantic
Fixed 3.11.6-3ubuntu0.1
released
noble
dne
oracular
dne
python3.12
focal
dne
jammy
dne
mantic
Fixed 3.12.0-1ubuntu0.1
released
noble
not-affected
oracular
not-affected
python3.4
focal
dne
jammy
dne
mantic
dne
noble
dne
oracular
dne
trusty
ignored
python3.5
focal
dne
jammy
dne
mantic
dne
noble
dne
oracular
dne
trusty
not-affected
xenial
Fixed 3.5.2-2ubuntu0~16.04.13+esm13
released
python3.6
bionic
not-affected
focal
dne
jammy
dne
mantic
dne
noble
dne
oracular
dne
python3.7
bionic
Fixed 3.7.5-2ubuntu1~18.04.2+esm3
released
focal
dne
jammy
dne
mantic
dne
noble
dne
oracular
dne
python3.8
bionic
Fixed 3.8.0-3ubuntu1~18.04.2+esm2
released
focal
Fixed 3.8.10-0ubuntu1~20.04.10
released
jammy
dne
mantic
dne
noble
dne
oracular
dne
python3.9
focal
Fixed 3.9.5-3ubuntu0~20.04.1+esm2
released
jammy
dne
mantic
dne
noble
dne
oracular
dne
References
http://www.openwall.com/lists/oss-security/2024/03/20/5
https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a
https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25
https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5
https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d
https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82
https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b
https://github.com/python/cpython/issues/91133
https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/
https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/
http://www.openwall.com/lists/oss-security/2024/03/20/5
https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a
https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25
https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5
https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d
https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82
https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b
https://github.com/python/cpython/issues/91133
https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html
https://lists.debian.org/debian-lts-announce/2024/11/msg00005.html
https://lists.debian.org/debian-lts-announce/2024/12/msg00000.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/
https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/