forwarded 291962 pgsql-bugs@postgresql.org thanks Hi Javier!
Javier Fernández-Sanguino Peña [2005-01-24 9:51 +0100]: > Hi postgresql maintainer, > > I've been auditing postgresql as part of an auditing effort within the > work of the Debian Security Audit team [1] looking for security bugs > that might be used for symlink attacks in temporary directories. Many thanks for the detailed report! I fixed all issues in the build-relevant upstream files and in the maintainer scripts (in most cases I tried to eliminate the usage of temporary files in the first place). I forwarded all the other issues to upstream so that they can fix their build and development tools if they want. I will do a new Debian upload soon, which will contain the fixes (bug is already 'pending'). Thanks, Martin -- Martin Pitt http://www.piware.de Ubuntu Developer http://www.ubuntulinux.org Debian GNU/Linux Developer http://www.debian.org
signature.asc
Description: Digital signature
