Bug#463907: Creates tempfiles in a unsafe way

2008-02-08 Thread Nico Golde
Hi, the first issue got CVE id CVE-2008-0665 and the other issues got CVE-2008-0666. Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. pgpK8lbSx2qk5.pgp Description: PGP signature

Bug#463907: Creates tempfiles in a unsafe way

2008-02-07 Thread Nico Golde
Hi, attached is an updated patch which I will upload as a 0-day NMU with permission of the maintainer. Many thanks to Frank for his input! Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 enc

Bug#463907: Creates tempfiles in a unsafe way

2008-02-07 Thread Nico Golde
Hi, I found a similar issue in wml_contrib/wmg.cgi which we also install in our package: 369 $tmpfile = "/tmp/pe.tmp.$$"; 370 unlink($tmpfile); 371 open(TMP, ">$tmpfile"); 372 print TMP $contents; 373 close(TMP); 374 ope

Bug#463907: Creates tempfiles in a unsafe way

2008-02-06 Thread Nico Golde
Hi Felipe, * Felipe Augusto van de Wiel (faw) <[EMAIL PROTECTED]> [2008-02-06 18:26]: > On 04-02-2008 10:16, Nico Golde wrote: > > * Frank Lichtenheld <[EMAIL PROTECTED]> [2008-02-04 12:56]: [...] > >> $tmpdir = $ENV{'TMPDIR'} || '/tmp'; > >> $tmpfile = $tmpdir . "/ipp.$$.tmp"; > >> unlink($tmpfil

Processed: Re: Bug#463907: Creates tempfiles in a unsafe way

2008-02-06 Thread Debian Bug Tracking System
Processing commands for [EMAIL PROTECTED]: > tags 463907 + confirmed Bug#463907: Creates tempfiles in a unsafe way Tags were: security Tags added: confirmed > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (adminis

Bug#463907: Creates tempfiles in a unsafe way

2008-02-06 Thread Felipe Augusto van de Wiel (faw)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 tags 463907 + confirmed thanks On 04-02-2008 10:16, Nico Golde wrote: > * Frank Lichtenheld <[EMAIL PROTECTED]> [2008-02-04 12:56]: >> Package: wml >> Version: 2.0.11-1 >> Severity: serious >> Tags: security >> >> The following code in wml_backend/p1_

Processed: Re: Bug#463907: Creates tempfiles in a unsafe way

2008-02-04 Thread Debian Bug Tracking System
Processing commands for [EMAIL PROTECTED]: > severity 463907 grave Bug#463907: Creates tempfiles in a unsafe way Severity set to `grave' from `serious' > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (admin

Bug#463907: Creates tempfiles in a unsafe way

2008-02-04 Thread Nico Golde
severity 463907 grave thanks Hi, * Frank Lichtenheld <[EMAIL PROTECTED]> [2008-02-04 12:56]: > Package: wml > Version: 2.0.11-1 > Severity: serious > Tags: security > > The following code in wml_backend/p1_ipp/ipp.src is obviously unsafe > (and actually causing practical problems during the Debia

Bug#463907: Creates tempfiles in a unsafe way

2008-02-03 Thread Frank Lichtenheld
Package: wml Version: 2.0.11-1 Severity: serious Tags: security The following code in wml_backend/p1_ipp/ipp.src is obviously unsafe (and actually causing practical problems during the Debian website build): $tmpdir = $ENV{'TMPDIR'} || '/tmp'; $tmpfile = $tmpdir . "/ipp.$$.tmp"; unlink($tmpfile);