On Sun, Aug 24, 2008 at 10:05:30PM +0400, Dmitry E. Oboukhov wrote: > Package: gdrae > Severity: grave > > Hi, maintainer!
gdrae is indeed vulnerable to temp file attacks through /tmp/gdrae/palabra However, I have some doubts whether this should be fixed or gdrae rather be removed altogether: It consists of a very small shell script (43 lines), which only runs a lynx dump on http://buscon.rae.es/draeI/SrvltGUIBusUsual?LEMA=$palabra"; This will break whenever they update their site scheme and there're much more useful approachs in search engine frontends, e.g. the surfraw package or Iceweasel website search scripts. The package is also unmaintained beyond the initial upload. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
