[Secure-testing-team] Bug#573615: CVE-2009-1299: insecure temporary file creation

Giuseppe Iuculano iuculano at debian.org
Fri Mar 12 22:26:58 UTC 2010


Package: pulseaudio
Severity: serious
Tags: security patch

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

Dan Rosenberg discovered an insecure temporary file creation in pulseadio.

Please see: https://bugs.edge.launchpad.net/ubuntu/+source/pulseaudio/+bug/509008

Upstream patch: http://git.0pointer.de/?p=pulseaudio.git;a=patch;h=d3efa43d85ac132c6a5a416a2b6f2115f5d577ee


Cheers,
Giuseppe

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAkuav68ACgkQNxpp46476aoIDgCfSbvcWfJv7xTaPdkpGVVPMzBF
+7kAn2NluI/uqE9euYefLLWWvpS5zjZQ
=3aV7
-----END PGP SIGNATURE-----





More information about the Secure-testing-team mailing list