Bug#348322: Linu ee: Security advisory - malicious local user to overwrite arbitrary files on the system

To: hmahon@uswest.net
Cc: 348322@bugs.debian.org, 348322-forwarded@bugs.debian.org
Subject: Bug#348322: Linu ee: Security advisory - malicious local user to overwrite arbitrary files on the system
From: Jari Aalto <jari.aalto@cante.net>
Date: Wed, 20 Dec 2006 19:23:12 +0200
Message-id: <[🔎] 87hcvqqy67.fsf@w2kpicasso.cante.net>
Reply-to: Jari Aalto <jari.aalto@cante.net>, 348322@bugs.debian.org

Hi Hugh,

Concerning this:

  FreeBSD ee ispell_op Function Symlink Arbitrary File Overwrite
  http://osvdb.org/displayvuln.php?osvdb_id=22320

Could you apply this change and release new version of ee:

   ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-06:02/ee.patch

This would help fixing the Debian bug at:

   ee: [CVE-2006-0055] insecure temporary files
   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=348322
   
Jari

Reply to:

Prev by Date: LAUREN
Next by Date: Bug#348322: marked as forwarded (ee: [CVE-2006-0055] insecure temporary files)
Previous by thread: LAUREN
Next by thread: Bug#348322: marked as forwarded (ee: [CVE-2006-0055] insecure temporary files)
Index(es):
- Date
- Thread