Hi, attached is a patch which fixes this issue. It will be also archived on: http://people.debian.org/~nion/nmu-diff/caudium-1.4.12-11_1.4.12-11.1.patch
Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
diff -u caudium-1.4.12/debian/changelog caudium-1.4.12/debian/changelog --- caudium-1.4.12/debian/changelog +++ caudium-1.4.12/debian/changelog @@ -1,3 +1,11 @@ +caudium (3:1.4.12-11.1) unstable; urgency=high + + * Non-maintainer upload by the Security Team. + * Fix insecure temporary file usage in configvar script + (CVE-2008-3883; Closes: #496404) + + -- Nico Golde <[EMAIL PROTECTED]> Thu, 04 Sep 2008 13:34:24 +0200 + caudium (3:1.4.12-11) unstable; urgency=low * New maintainer (Closes: #411675) only in patch2: unchanged: --- caudium-1.4.12.orig/server/configvar +++ caudium-1.4.12/server/configvar @@ -37,7 +37,9 @@ pike=pike if [ -x bin/pike ] ; then pike=bin/pike; fi -cat > /tmp/roxen$$.pike << "____________________" +ROXENTMP=$(mktemp) + +cat > $ROXENTMP << "____________________" #42 "configvar" import Stdio; @@ -266,6 +268,6 @@ // The line below _must_ be there.. ____________________ -echo Starting $pike $DEFINES /tmp/roxen$$.pike "$@"... -$pike $DEFINES /tmp/roxen$$.pike "$@" -/bin/rm /tmp/roxen$$.pike +echo Starting $pike $DEFINES $ROXENTMP "$@"... +$pike $DEFINES $ROXENTMP "$@" +/bin/rm $ROXENTMP
pgp7fTbJK1qOR.pgp
Description: PGP signature
