[Pkg-gtkpod-devel] Bug#710885: libimobiledevice: insecure /tmp usage
Salvatore Bonaccorso
carnil at debian.org
Tue Jun 4 20:59:55 UTC 2013
Control: retitle -1 libimobiledevice: CVE-2013-2142: insecure /tmp usage
On Mon, Jun 03, 2013 at 11:43:55AM +0300, Henri Salo wrote:
> Package: libimobiledevice
> Version: 1.1.1-4
> Severity: important
> Tags: security
>
> Insecure /tmp usage vulnerability has been fixed in upstream. Please contact me
> in case you need assistance.
>
> http://www.openwall.com/lists/oss-security/2013/05/31/5
> http://cgit.sukimashita.com/libimobiledevice.git/commit/src?id=825d
> http://libiphone.lighthouseapp.com/projects/27916-libiphone/tickets/331-insecure-tmp-directory-use
> https://bugs.launchpad.net/ubuntu/+source/libimobiledevice/+bug/1164263
A CVE was now assigned to this issue. Please include the CVE in your
changelog when you fix this issue.
Thanks a lot in advance, and for your work
Regards,
Salvatore
More information about the Pkg-gtkpod-devel
mailing list