Bug#561651: libhtml-scrubber-perl: unsafe /tmp usage during build

Ansgar Burchardt ansgar at 2008.43-1.org
Sat Dec 19 09:09:59 UTC 2009

Previous message: Contact The Office
Next message: Processing of libtest-cpan-meta-perl_0.16-1_i386.changes
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Source: libhtml-scrubber-perl
Version: 0.08-4
Tags: security

Hi,

the test suite uses /tmp in a unsafe way: t/06_scrub_file.t will write
to the files /tmp/html-scrubber.test.html{,.html}, following symlinks
and eventually overwriting other data.

Regards,
Ansgar

Previous message: Contact The Office
Next message: Processing of libtest-cpan-meta-perl_0.16-1_i386.changes
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the pkg-perl-maintainers mailing list