Package: src:pdfsandwich version: 0.1.6-1 Severity: grave Tags: security X-Debbugs-CC: secure-testing-t...@lists.alioth.debian.org
Hi, pdfsandwish use totally previsible file name like /tmp/pdfsandwich_inputfileea1150.pdf[11] Security team could you open a CVE ? Upsteam should use for instance a tmpname subdirectory Bastien