Bug#756432: CVE request: Gummi
Daniel Stender
debian at danielstender.com
Thu Oct 8 16:19:05 UTC 2015
Hello,
I request a CVE for Gummi (LaTeX editor with preview pane) [1], the current
release is 0.6.5.
The program uses predictable filenames for files in /tmp, which produces a race
condition [2].
I'm Debian maintainer for this software.
Please assign a CVE as appropriate.
Thanks,
Daniel Stender
[1] https://github.com/alexandervdm/gummi
[2] https://bugs.debian.org/756432
gummi: Uses predictable filenames in /tmp based on basename
--
4096R/DF5182C8
46CB 1CA8 9EA3 B743 7676 1DB9 15E0 9AF4 DF51 82C8
LPI certified Linux admin (LPI000329859 64mz6f7kt4)
http://www.danielstender.com/blog/
More information about the debian-science-maintainers
mailing list