Processed: Re: Bug#331620: uim: privilege escalation before 0.4.9.1

Processing commands for [EMAIL PROTECTED]: > tags 331620 patch Bug#331620: uim: privilege escalation before 0.4.9.1 Tags were: security Tags added: patch > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator,

Bug#331620: uim: privilege escalation before 0.4.9.1

tags 331620 patch thanks I made the patch from uim-0.4.9 and uim-0.4.9.1. With this patch, update-uim-config prints some warning messages(Broken Pipe), but this will fix the security problem. In Debian, mlterm is installed with setgid, and I'm afraid mlterm is affected with this bug. Best regar

Bug#331620: uim: privilege escalation before 0.4.9.1

Package: uim Severity: serious Tags: security All uim releases before 0.4.9.1 have a security bug, which causes privilege escalation if applications linked to libuim is set setuid/setgid. For more detail, please see: http://lists.freedesktop.org/pipermail/uim/2005-September/001346.html Best rega