Package: kdelibs-bin
Version: 4:3.2.3-2
Severity: grave
File: /usr/lib/libkdeinit_dcopserver.so
Tags: security patch
Justification: user security hole
dcop/dcopserver.cpp creates a temporary file /tmp/dcopXX. This file
should be created using mkstemp(3), to avoid /tmp symlink races/attacks.
Please contact the security team if this is an issue which affects stable.
--
- mdz
El Domingo, 25 de Julio de 2004 19:55, Colin Phipps escribió:
diff -pru kdelibs-3.2.3/acinclude.m4 ../kdelibs-3.2.3/acinclude.m4
--- kdelibs-3.2.3/acinclude.m4 2004-07-25 18:08:43.0 +0100
+++ ../kdelibs-3.2.3/acinclude.m4 2004-07-25 18:14:05.0 +0100
FWIW, note that this
3 matches
Mail list logo