Your message dated Thu, 07 Feb 2008 19:17:05 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#463907: fixed in wml 2.0.11-3.1 has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database)
--- Begin Message ---Package: wml Version: 2.0.11-1 Severity: serious Tags: security The following code in wml_backend/p1_ipp/ipp.src is obviously unsafe (and actually causing practical problems during the Debian website build): $tmpdir = $ENV{'TMPDIR'} || '/tmp'; $tmpfile = $tmpdir . "/ipp.$$.tmp"; unlink($tmpfile); $tmp = new IO::File; $tmp->open(">$tmpfile") || error("cannot write into $tmpfile: $!"); Sadly enough this was fixed by the former maintainer for sarge but apparently got lost when the new upstream was packaged for etch. See the following code in sarge's version: my $tmpldir = ($ENV{'TMPDIR'} || '/tmp') . '/ipp.XXXXXX'; $tmpdir = mkdtemp($tmpldir) or die "Unable to create temporary directory: $!\n"; $tmpfile = $tmpdir . "/ipp.$$.tmp"; unlink($tmpfile); $tmp = new IO::File; $tmp->open(">$tmpfile") || error("cannot write into $tmpfile: $!"); You could probably just use that again. Gruesse, Frank Lichtenheld -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (900, 'unstable'), (900, 'testing'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.23-1-686 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages wml depends on: ii eperl 2.2.14-15 Embedded Perl 5 Language ii iselect 1.3.1-3 An interactive line selection tool ii libbit-vector-perl 6.4-7 Perl and C library for bit vectors ii libc6 2.7-6 GNU C Library: Shared libraries ii libimage-size-perl 3.1-3 determine the size of images in se ii libpng12-0 1.2.15~beta5-3 PNG library - runtime ii libterm-readkey-perl 2.30-3 A perl module for simple terminal ii m4 1.4.10-1 a macro processing language ii mp4h 1.3.1-4 Macro processor for HTML documents ii perl 5.8.8-12 Larry Wall's Practical Extraction ii perl-base [perlapi-5.8.8] 5.8.8-12 The Pathologically Eclectic Rubbis ii slice 1.3.8-9 Extract out pre-defined slices of Versions of packages wml recommends: ii libhtml-clean-perl 0.8-10 Cleans up HTML code for web browse ii linklint 2.3.5-5 A fast link checker and web site m ii tidy 20080116cvs-2 HTML syntax checker and reformatte ii txt2html 2.50-2 Text to HTML converter -- no debconf information
--- End Message ---
--- Begin Message ---Source: wml Source-Version: 2.0.11-3.1 We believe that the bug you reported is fixed in the latest version of wml, which is due to be installed in the Debian FTP archive: wml_2.0.11-3.1.diff.gz to pool/main/w/wml/wml_2.0.11-3.1.diff.gz wml_2.0.11-3.1.dsc to pool/main/w/wml/wml_2.0.11-3.1.dsc wml_2.0.11-3.1_i386.deb to pool/main/w/wml/wml_2.0.11-3.1_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Nico Golde <[EMAIL PROTECTED]> (supplier of updated wml package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 07 Feb 2008 12:01:43 +0100 Source: wml Binary: wml Architecture: source i386 Version: 2.0.11-3.1 Distribution: unstable Urgency: high Maintainer: Felipe Augusto van de Wiel (faw) <[EMAIL PROTECTED]> Changed-By: Nico Golde <[EMAIL PROTECTED]> Description: wml - off-line HTML generation toolkit Closes: 463907 Changes: wml (2.0.11-3.1) unstable; urgency=high . * Non-maintainer upload by security team. * Fix insecure temporary file creations in eperl and ipp backends and a similar issue in the wmg.cgi contrib file leading to possible symlink attacks. If you already use wmg.cgi please update your copy (Closes: #463907). Files: 0001104f9f320183a90ac97b61754797 623 web optional wml_2.0.11-3.1.dsc ddde9afc6b85dd4a2c6320bc851a77af 63122 web optional wml_2.0.11-3.1.diff.gz 4aa71d0ea89861e2ab0c03e4ef3a96ee 449164 web optional wml_2.0.11-3.1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHq033HYflSXNkfP8RAoKuAJ4r2/jJsn+kV81N6CVpagEFlVjQ3QCcDhSj P1HxwVxC8mEvOqweOyHlexo= =nRfv -----END PGP SIGNATURE-----
--- End Message ---
