Bug#626281: [oss-security] CVE request: keepalived pid file permissions issue

Please use CVE-2011-1784 for this. Thanks. -- JB - Original Message - > Hey, > > it was reported that keepalived (and some other daemons) store their > pid > file with permission 666. A bug was opened for keepalived in Debian, > could a CVE be assigned to the issue? > > Bug text w

Bug#583435: [oss-security] CVE Request -- rpcbind -- Insecure (predictable) temporary file use

Please use CVE-2010-2061 for this. Thanks. -- JB - "Jan Lieskovsky" wrote: > Hi Steve, vendors, > >Guillem Jover pointed out: >[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583435#5 > > a deficiency in the way rpcbind gathered / saved registrations from / > to > dump