On Tue, Jan 3, 2012 at 18:05:22 +0100, Romain Francoise wrote:
> Jakub Wilk <jw...@debian.org> writes:
>
> > Also, you just introduced a security hole: every user can DoS other one
> > (including root) my mkdiring /tmp/tmux-${VICTIM_UID}.
>
> See #620304 (and CVE-2011-1496) for more context about this.
>
That doesn't say anything about using /tmp, just that the patch you used
before was broken?
Cheers,
Julien
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20120103190323.ga9...@radis.cristau.org
