Temp file permissions too permissive in export/import services #169

New Issue

2026-04-10T16:04:01+02:00

shahondin1624 commented

2026-04-10 16:04:01 +02:00

Severity: MEDIUM

Location

lib/Service/EncryptedExportService.php:114-164, lib/Service/BundleImportService.php:309-351

Description

Both services create temporary files with tempnam(). While finally blocks clean up the files, a race condition exists: between file_put_contents and unlink, another process could read sensitive exported data from the temp directory.

Recommendation

Set restrictive permissions on temp files (chmod 0600) immediately after creation.

## Severity: MEDIUM ## Location `lib/Service/EncryptedExportService.php:114-164`, `lib/Service/BundleImportService.php:309-351` ## Description Both services create temporary files with `tempnam()`. While `finally` blocks clean up the files, a race condition exists: between `file_put_contents` and `unlink`, another process could read sensitive exported data from the temp directory. ## Recommendation Set restrictive permissions on temp files (`chmod 0600`) immediately after creation.

shahondin1624 added the backend security priority:medium labels 2026-04-10 16:04:01 +02:00

shahondin1624 referenced this issue from a commit

2026-04-10 16:21:44 +02:00

fix: set restrictive permissions (0600) on temp files (Closes #169)

shahondin1624 referenced a pull request that will close this issue

2026-04-10 16:21:50 +02:00

fix: set restrictive permissions (0600) on temp files (Closes #169) #182

shahondin1624 closed this issue

2026-04-10 16:21:55 +02:00

shahondin1624 referenced this issue from a commit

2026-04-10 16:21:55 +02:00

fix: set restrictive permissions (0600) on temp files (Closes #169) (#182)