The rs_filter_graph function in librawstudio/rs-filter.c in rawstudio might allow local users to truncate arbitrary files via a symlink attack on (1) /tmp/rs-filter-graph.png or (2) /tmp/rs-filter-graph.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rawstudio rawstudio 2.0-1.1 |
||
fedoraproject fedora 22 |