Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.


https://bugzilla.redhat.com/show_bug.cgi?id=225796





--- Comment #5 from Michael Schwendt <bugs.mich...@gmx.net>  2009-05-22 
10:54:44 EDT ---
Feel free to take over. Robert has fixed all issues I mentioned in comment 1. 

Build log warns about tmpnam() usage. The implementation is not safe. It
creates the temporary file in the current working directory, but that means the
user must never work in a directory an attacker may be able to write in, too.

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

_______________________________________________
Fedora-package-review mailing list
Fedora-package-review@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-review

Reply via email to