On Thu, Aug 18, 2005 at 10:22:26AM +1000, Geoff Crompton wrote: > Hi, > > Can you confirm if this bug is the same as at > http://www.securityfocus.com/bid/14522? 14522 talks about a Insecure > Temporary File Creation Vulnerability that was fixed in version 0.42. > Both 14522 and this debian bug were reported by Javier, so I'm guessing > they are the same thing. > Yes, I had a quick check that this is the only occurence in 0.41. There were more tempfile handlings like this, but they were all fixed during the release cycle for 0.42.
With best regards, Wolfi > Thanks! > > -- > Geoff Crompton > Debian System Administrator > Strategic Data > +61 3 9340 9000
signature.asc
Description: Digital signature
