Bug#348322: Linu ee: Security advisory - malicious local user to overwrite arbitrary files on the system
Hi Hugh,
Concerning this:
FreeBSD ee ispell_op Function Symlink Arbitrary File Overwrite
http://osvdb.org/displayvuln.php?osvdb_id=22320
Could you apply this change and release new version of ee:
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-06:02/ee.patch
This would help fixing the Debian bug at:
ee: [CVE-2006-0055] insecure temporary files
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=348322
Jari
Reply to: