On Sun, Nov 20, 2005 at 08:17:17PM +0100, Uwe Zeisberger wrote: > Package: libjpeg-progs > Version: 6b-10 > Severity: grave > File: /usr/bin/exifautotran > Tags: security patch > > Hello, > > exifautotran just uses a file named "tempfile" for temporarly saving > the result of jpegtran.
Note that woody is not affected since it does not include exifautotran. Note that sarge, etch and sid include the same version. I have put fixed package at <http://people.Debian.org/~ballombe/jpeg> I won't upload them until I get advice from the security team. However I am not sure this is a security bug: The original script create a file named tempfile in the current directory, not int /tmp. Would you consider this script to have a security hole? #!/bin/sh cat "$1" > tempfile mv tempfile "$2" or even #!/bin/sh cat "$1" > "$2" Cheers, -- Bill. <[EMAIL PROTECTED]> Imagine a large red swirl here. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]