Package: gtkdiskfree Version: 1.9.3-4 Severity: grave Tags: security gtkdiskfree handles a temporary file (/tmp/gtkdiskfree) in an insecure way, which allows a local attacker to remove or overwrite an arbitrary file of the user who invokes gtkdiskfree. See
http://www.zataz.net/adviso/gtkdiskfree-09052005.txt for details. There is no CAN number yet, I will ask for one and send it to this bug. Thanks, Martin -- Martin Pitt http://www.piware.de Ubuntu Developer http://www.ubuntulinux.org Debian Developer http://www.debian.org
signature.asc
Description: Digital signature
