CVE-2019-18932

Name of the Vulnerable Software and Affected Versions Squid Analysis Report Generator (sarg) versions 2.3.11 and earlier

Description The issue allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and place symlinks in it (after winning a /tmp/sarg/denied.int unsort race condition). The outcome will be corrupted or newly created files in privileged file system locations.

Recommendations For Squid Analysis Report Generator (sarg) versions 2.3.11 and earlier, consider restricting access to the /tmp/sarg directory to minimize the risk of exploitation. As a temporary workaround, consider setting up proper permissions and access controls for the temporary directory used by sarg to prevent unauthorized access and modifications. At the moment, there is no information about a newer version that contains a fix for this vulnerability.