[Pkg-hpijs-devel] Bug#701185: CVE-2013-0200: Insecure temporary files
Moritz Muehlenhoff
jmm at inutil.org
Fri Feb 22 14:15:13 UTC 2013
Package: hplip
Severity: grave
Tags: security
Justification: user security hole
Several further insecurely handled temporary files were discovered by Red Hat:
https://www.redhat.com/archives/enterprise-watch-list/2013-February/msg00024.html
I've extracted the patch from the RHEL update, it's attached to this mail.
Cheers,
Moritz
-------------- next part --------------
A non-text attachment was scrubbed...
Name: hplip-CVE-2013-0200.patch
Type: text/x-diff
Size: 3926 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-hpijs-devel/attachments/20130222/436d7612/attachment.patch>
More information about the Pkg-hpijs-devel
mailing list