Bug#290974: acknowledged by developer (Bug#290974: fixed in apache 1.3.33-3)

To: Javier Fernández-Sanguino Peña <jfs@computer.org>, 290974@bugs.debian.org
Cc: control@bugs.debian.org
Subject: Bug#290974: acknowledged by developer (Bug#290974: fixed in apache 1.3.33-3)
From: Thom May <thom@debian.org>
Date: Thu, 20 Jan 2005 11:50:06 +0000
Message-id: <[🔎] 20050120115006.GA9125@localhost.localdomain>
Reply-to: Thom May <thom@debian.org>, 290974@bugs.debian.org
In-reply-to: <[🔎] 20050120075519.GA20365@dat.etsit.upm.es>
References: <E1CrS7J-0006t1-00@newraff.debian.org> <[🔎] 20050118000842.GA25813@dat.etsit.upm.es> <handler.290974.D290974.110618865414248.notifdone@bugs.debian.org> <[🔎] 20050120075519.GA20365@dat.etsit.upm.es>

* Javier Fern?ndez-Sanguino Pe?a (jfs@computer.org) wrote :
> reopen 290974
> tags 290974 sarge
> thanks
> 
> A few comments on this:
> 
> >    * (Thom May)
> >      - Security fix - fix tempfile usage in check_forensic (Closes: #290974)
> 
> - Please help track this bugs in sarge by tagging them
> - fmn.sh was not fixed. Even if not used in the Debian package I would 
> appreciate if it was patched too, helps in source code reviews.
It was fixed, it's not mentioned in the changelog since it's not used
anywhere outside the build process.

> - Please forward the full bug report upstream (if not already done)
>
Fixed in cvs upstream.

Cheers,
-Thom

Reply to:

References:
- Bug#290974: apache: Temporary usage bugs that can be used in symlink attacks
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>
- Bug#290974: acknowledged by developer (Bug#290974: fixed in apache 1.3.33-3)
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>

Prev by Date: [Apache] Vhost with mod_rewrite
Next by Date: Bug#291514: apache2-mpm-prefork segfaults since python2.3 upgrade
Previous by thread: Processed: Re: Bug#290974 acknowledged by developer (Bug#290974: fixed in apache 1.3.33-3)
Next by thread: Bug#242499: libapache-mod-perl: same here
Index(es):
- Date
- Thread