* SECURITY UPDATE: temporary file vulnerability (LP: #408915)
- utils/iscsi_discovery: use mktemp to store iscsiadm -m discovery result
rather than writing it to an insecurely-created temporary file. Move
cleanup sooner so we don't leave files around if nothing is discovered.
- CVE-2009-1297
-- Jamie Strandboge <email address hidden> Thu, 20 Oct 2011 14:23:00 -0500
This bug was fixed in the package open-iscsi - 2.0.865-1ubuntu3.5
--------------- 1ubuntu3. 5) hardy-security; urgency=low
open-iscsi (2.0.865-
* SECURITY UPDATE: temporary file vulnerability (LP: #408915) discovery: use mktemp to store iscsiadm -m discovery result
- utils/iscsi_
rather than writing it to an insecurely-created temporary file. Move
cleanup sooner so we don't leave files around if nothing is discovered.
- CVE-2009-1297
-- Jamie Strandboge <email address hidden> Thu, 20 Oct 2011 14:23:00 -0500