CVE-2019-13228

Name of the Vulnerable Software and Affected Versions deepin-clone versions prior to 1.1.3

Description The issue allows an unprivileged user to potentially create or overwrite files in arbitrary file system locations by preparing a symlink attack in the /tmp/repo.iso path used by the BootDoctor::fix() function. Although the content is not directly controlled by the attacker, winning a race condition to replace the /tmp/repo.iso symlink with an attacker-controlled ISO file may lead to further privilege escalation.

Recommendations For deepin-clone versions prior to 1.1.3, update to version 1.1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the /tmp/repo.iso path to prevent symlink attacks until the update is applied.