This is at most a DoS, as mktemp safely creates the random file for us.
In the case that an attacker has filled the drive with all possible
combinations, mktemp will just fail to create the file, and scripts
using mktemp should equally fail. If there are scripts that don't
gracefully handle mktemp failing, bugs should be opened for those
packages separately.
** Changed in: mktemp (Ubuntu)
Importance: Undecided => Low
Status: New => Confirmed
--
mktemp-generated filenames insufficiently random when too short
https://bugs.launchpad.net/bugs/258172
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
