[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE id request: uudeview
From: Robert Buchholz <rbu () gentoo ! org>
Date: 2008-05-30 7:08:29
Message-ID: 200805300908.32714.rbu () gentoo ! org
[Download RAW message or body]
On Tuesday 13 May 2008, Nico Golde wrote:
> It makes use of tempnam which is known to be insecure to
> generate temporary files.
nzbget before 0.3.0 (I tried 0.2.3) ships a copy of the affected code.
Nico's patch applies there fine. As for false positives, Convert-UUlib
and pan fixed their copies of the code.
Robert
["signature.asc" (application/pgp-signature)]
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic