I didn't notice, but now I found the reasoning:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=282656;msg=7;archive=yes
Stefan
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Stefan Fritsch wrote:
> If wmFrog is ever packaged vor Debian, care should be taken that
> CAN-2004-2473 is fixed:
> "wmFrog weather monitor 0.1.6 allows local users to overwrite
> arbitrary files via a symlink attack on temporary files."
>
> See http://xforce.iss.net/xforce/xfdb/18232
Actually
If wmFrog is ever packaged vor Debian, care should be taken that
CAN-2004-2473 is fixed:
"wmFrog weather monitor 0.1.6 allows local users to overwrite
arbitrary files via a symlink attack on temporary files."
See http://xforce.iss.net/xforce/xfdb/18232
--
To UNSUBSCRIBE, email to [EMAIL PROTEC
3 matches
Mail list logo
