Bug#311206: shtool: Insecure tempfile generation

Moritz Muehlenhoff Sun, 29 May 2005 13:38:46 -0700

Package: shtool
Severity: important
Tags: security

shtool creates temporary files in an insecure manner, which can be
exploited through symlink attacks. Please see these URLs for details:
http://www.zataz.net/adviso/shtool-05252005.txt
http://bugs.gentoo.org/show_bug.cgi?id=93782


Cheers,
        Moritz

-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12-rc5
Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#311206: shtool: Insecure tempfile generation

Reply via email to