Bug#756600: (xcfa: Insecure use of temporary files, subject to race conditions)

Steve steve at steve.org.uk
Fri Aug 15 08:32:26 UTC 2014

Previous message: Bug#746378: Twisted Python breaks Flumotion
Next message: Processed: user debian-security at lists.debian.org, usertagging 756600 ...
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

  This bug report has now resulted in two CVE identifiers,
 as discussed here:

    http://www.openwall.com/lists/oss-security/2014/08/15/4

   CVE-2014-5254 - For all symlink issues.

   CVE-2014-5255 - For code execution via the temporary shell script issue.

Steve
-- 
http://www.steve.org.uk/

Previous message: Bug#746378: Twisted Python breaks Flumotion
Next message: Processed: user debian-security at lists.debian.org, usertagging 756600 ...
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the pkg-multimedia-maintainers mailing list