CVE-2023-6597

An issue was found in the CPython `tempfile.TemporaryDirectory` class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.

The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which can run privileged programs are potentially able to modify permissions of files referenced by symlinks in some circumstances.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
HIGH
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
PSFCNA
7.8 HIGH
LOCAL
HIGH
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
CISA-ADPADP
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
Debian logo
Debian Releases
Debian Product
Codename
pypy3
bullseye
vulnerable
buster
no-dsa
bullseye (security)
7.3.5+dfsg-2+deb11u4
fixed
bookworm
7.3.11+dfsg-2+deb12u2
fixed
sid
7.3.17+dfsg-3
fixed
trixie
7.3.17+dfsg-3
fixed
python2.7
bullseye
2.7.18-8+deb11u1
fixed
buster
no-dsa
python3.11
bookworm
3.11.2-6+deb12u4
fixed
buster
no-dsa
bookworm (security)
3.11.2-6+deb12u3
fixed
python3.12
sid
3.12.8-3
fixed
trixie
3.12.8-3
fixed
buster
no-dsa
python3.9
bullseye
vulnerable
buster
no-dsa
bullseye (security)
3.9.2-1+deb11u2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
python2.7
oracular
dne
noble
dne
mantic
dne
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
python3.10
oracular
dne
noble
dne
mantic
dne
jammy
Fixed 3.10.12-1~22.04.4
released
focal
dne
python3.11
oracular
dne
noble
dne
mantic
Fixed 3.11.6-3ubuntu0.1
released
jammy
needs-triage
focal
dne
python3.12
oracular
not-affected
noble
not-affected
mantic
Fixed 3.12.0-1ubuntu0.1
released
jammy
dne
focal
dne
python3.4
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
trusty
ignored
python3.5
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
xenial
Fixed 3.5.2-2ubuntu0~16.04.13+esm13
released
trusty
not-affected
python3.6
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
bionic
not-affected
python3.7
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
bionic
Fixed 3.7.5-2ubuntu1~18.04.2+esm3
released
python3.8
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
Fixed 3.8.10-0ubuntu1~20.04.10
released
bionic
Fixed 3.8.0-3ubuntu1~18.04.2+esm2
released
python3.9
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
Fixed 3.9.5-3ubuntu0~20.04.1+esm2
released
References
http://www.openwall.com/lists/oss-security/2024/03/20/5
https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a
https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25
https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5
https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d
https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82
https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b
https://github.com/python/cpython/issues/91133
https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/
https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/
http://www.openwall.com/lists/oss-security/2024/03/20/5
https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a
https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25
https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5
https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d
https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82
https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b
https://github.com/python/cpython/issues/91133
https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/
https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/