Bug#561651: libhtml-scrubber-perl: unsafe /tmp usage during build

Ansgar Burchardt ansgar at 2008.43-1.org
Sat Dec 19 09:09:59 UTC 2009


Source: libhtml-scrubber-perl
Version: 0.08-4
Tags: security

Hi,

the test suite uses /tmp in a unsafe way: t/06_scrub_file.t will write
to the files /tmp/html-scrubber.test.html{,.html}, following symlinks
and eventually overwriting other data.

Regards,
Ansgar





More information about the pkg-perl-maintainers mailing list