Hi This issue is now being tracked as CVE-2008-3883. When you fix it, please mention the CVE id in your changelog entry.
Here is the text for the CVE entry: CVE-2008-3883[0]: | configvar in Caudium 1.4.12 allows local users to overwrite arbitrary | files via a symlink attack on a /tmp/roken#####.pike temporary file. [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3883 http://security-tracker.debian.net/tracker/CVE-2008-3883 Cheers Steffen
signature.asc
Description: This is a digitally signed message part.
