Description
An issue was found in the CPython `tempfile.TemporaryDirectory` class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior. The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which can run privileged programs are potentially able to modify permissions of files referenced by symlinks in some circumstances.
References (14)
Core 14
Core References
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/
Issue Tracking issue-tracking
https://github.com/python/cpython/issues/91133
Various Sources vendor-advisory
https://mail.python.org/archives/list/[email protected]/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/
Scores
CVSS v3
7.8
EPSS
0.0008
EPSS Percentile
22.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
Status
published
Products (6)
Python Software Foundation/CPython
< 3.8.19
Python Software Foundation/CPython
3.10.0 - 3.10.14
Python Software Foundation/CPython
3.11.0 - 3.11.8
Python Software Foundation/CPython
3.12.0 - 3.12.1
Python Software Foundation/CPython
3.13.0a1 - 3.13.0a3
Python Software Foundation/CPython
3.9.0 - 3.9.19
Published
Mar 19, 2024
Tracked Since
Feb 18, 2026