[CVE-2007-2837] Unsafe tmp file handling
Bug #124725 reported by
Michael Bienia
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| fireflier (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
| Dapper |
Fix Released
|
Undecided
|
Unassigned | ||
| Edgy |
Won't Fix
|
Undecided
|
Unassigned | ||
| Feisty |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
Here is a debdiff for feisty. This is a fireflier 1.1.6-3etch1 package with a Ubuntu changelog and changed Maintainer field.
fireflier (1.1.6-3ubuntu0.1) feisty-security; urgency=low
* SECURITY UPDATE: Unsafe tmp file handling
* Patch taken from fireflier 1.1.6-3etch1:
Fix the unsafe usage of temporary files, allowing arbitary file deletion.
* References:
DSA-1326
CVE-2007-2837
* debian/control: Modify Maintainer value to match
DebianMaint
-- Michael Bienia <email address hidden> Sun, 08 Jul 2007 00:07:31 +0200
CVE References
Revision history for this message
| Michael Bienia (geser) wrote | #1 |
Revision history for this message
| Michael Bienia (geser) wrote | #2 |
| Changed in fireflier: | |
| status: | New → Fix Released |
| status: | New → Confirmed |
| status: | New → Confirmed |
| status: | New → Confirmed |
Revision history for this message
| Michael Bienia (geser) wrote | #3 |
Revision history for this message
| Michael Bienia (geser) wrote | #4 |
Revision history for this message
| Kees Cook (kees) wrote | #5 |
| Changed in fireflier: | |
| status: | Confirmed → Fix Released |
| status: | Confirmed → Fix Released |
| Changed in fireflier: | |
| status: | Confirmed → Won't Fix |
To post a comment you must log in.
Here is a debdiff for dapper.
dapper and edgy have the same version so one could apply the debdiff also to the edgy package but I've got problems building the edgy package in a pbuilder.