CVE-2020-11867
First published: Mon Nov 30 2020(Updated: )
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/audacity | 2.4.2~dfsg0-5 3.2.4+dfsg-1 3.7.1+dfsg-1 | |
| Audacity | <=2.3.3 | |
| Fedora | =33 | |
| Fedora | =34 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/audacity/audacity/releases
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MG5PSF4CJ7UPMJHWX553EG3P2XN3PAYI/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WKK3S2QBXBHOFOQMXMGY5QAKVUWUX2YY/
- https://salvatoresecurity.com/the-many-perils-of-tmp/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WKK3S2QBXBHOFOQMXMGY5QAKVUWUX2YY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MG5PSF4CJ7UPMJHWX553EG3P2XN3PAYI/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11867
- https://nvd.nist.gov/vuln/detail/CVE-2020-11867
- https://launchpad.net/bugs/cve/CVE-2020-11867
- https://security-tracker.debian.org/tracker/CVE-2020-11867
- https://ubuntu.com/security/CVE-2020-11867
- https://github.com/audacity/audacity/pull/700
Frequently Asked Questions
What is the severity of CVE-2020-11867?
CVE-2020-11867 has been classified as a medium severity vulnerability due to the improper permission settings allowing unauthorized access to temporary audio files.
How do I fix CVE-2020-11867?
To fix CVE-2020-11867, update Audacity to version 2.4.2 or later, where this vulnerability has been addressed.
Which versions of Audacity are affected by CVE-2020-11867?
Audacity versions up to and including 2.3.3 are affected by CVE-2020-11867.
What types of files are exposed in the CVE-2020-11867 vulnerability?
The CVE-2020-11867 vulnerability exposes temporary audio .au files to any user on the system.
Can CVE-2020-11867 lead to data leakage?
Yes, CVE-2020-11867 can potentially lead to data leakage as any user can read and play the temporary audio files created by Audacity.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/references
- agent/source
- agent/softwarecombine
- agent/tags
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/audacityteam
- canonical/audacity
- version/audacity/2.3.3
- vendor/fedoraproject
- canonical/fedora
- version/fedora/33
- version/fedora/34