-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
I have verified that the check_update.sh script in Debian is not vulnerable to this. This was fixed up stream and we are running the latest upstream version. micah Moritz Muehlenhoff wrote: > Hi, > there has been a Gentoo advisory about insecure temp files in rkhunter, > which got assigned CAN-2005-1270: > http://www.gentoo.org/security/en/glsa/glsa-200504-25.xml > > So please check, whether the mentioned check_update.sh script is > vulnerable in the Debian package as well. > > Cheers, > Moritz > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFDQ/9B9n4qXRzy1ioRArRMAJ9lrosJf/xOfrb0ANb9xzVhMiozvACfXMXE CglG87Y8Nap1yKdrnnSuxng= =D0rP -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
