subject:"Bug#456520\: mozilla\-venkman\: Insecure \/tmp usage"

Bug#456520: mozilla-venkman: Insecure /tmp usage

2007-12-16 Thread Gabor Gombas

Package: mozilla-venkman Version: 0.9.87.2-1 Severity: critical Tags: security Justification: root security hole Hi, mozilla-venkman.preinst contains: #! /bin/sh find . -maxdepth 1 -mindepth 1 /tmp/fin Just do an ln -s /etc/shadow /bin/fin as any user

Bug#456520: mozilla-venkman: Insecure /tmp usage

2007-12-16 Thread Mike Hommey

On Sun, Dec 16, 2007 at 12:47:15PM +0100, Gabor Gombas wrote: Package: mozilla-venkman Version: 0.9.87.2-1 Severity: critical Tags: security Justification: root security hole Hi, mozilla-venkman.preinst contains: #! /bin/sh find . -maxdepth 1 -mindepth 1