fvwm-1.24r-10 released
-----BEGIN PGP SIGNED MESSAGE-----
fvwm (1.24r-10); priority=HIGH
This is a high priority security fix release. Prior to this, an
attacker with an account on the system could force users running fvwm
to execute arbitrary commands.
Sun Jan 7 23:42:53 1996 Austin Donnelly <and1000@valour.pem.cam.ac.uk>
* configure.c: security fix: make /tmp/fvwmrc<pid> a
directory, and hold data in a file inside directory.
* fvwm.c: delete directory created in /tmp
* version 1.24r-10 released, still a.out
Mon Nov 13 14:51:55 1995 Austin Donnelly <and1000@valour.pem.cam.ac.uk>
* fvwm.c: Bug#1810: use atexit() to ensure that /tmp/fvwmrc<pid>
files are correctly deleted.
* configure.c: reworked /tmp/fvwmrc<pid> code to be closer to the
author's intent.
* version 1.24r-9 released, still a.out, to development tree only
05958bb6eff51df2b933c268544c6541 fvwm-1.24r-10.deb
57e922550edbf4e0b2fcd96f09ee3ee3 fvwm-1.24r-10.diff.gz
4bf102e2451ab7ae4fbc42712b3b79c2 fvwm-1.24r-10.tar.gz
-rw-r--r-- 1 and1000 and1000 239893 Jan 8 14:46 fvwm-1.24r-10.deb
-rw-rw-r-- 1 and1000 and1000 10543 Jan 8 15:19 fvwm-1.24r-10.diff.gz
-rw-rw-r-- 1 and1000 and1000 331181 Jan 7 23:47 fvwm-1.24r-10.tar.gz
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2i
iQCVAwUBMPFB0NthDNSvlL+dAQHwsgP+Jm+jbTUYig+O4lQEDMyCtDVju47V6j8I
0G7GYJLaA8PdHIUCJoWaH8g6jG0o2D5A/RxO8Nct5q7hGDp6CU065z/g3DLaUUag
uauVrxL87RZ3cAuj6sVBA0aQXMmZ7bO5ngttuXNWmXLLAhZUqVBKJFaVUmdrzlSa
1lu+IKzg+X4=
=IrAR
-----END PGP SIGNATURE-----
Reply to: