Re: Bug#291542: rcs: [source] warning: the use of `mktemp' is dangerous, better use `mkstemp'

To: Mark Baker <mark@mnb.org.uk>, 291542@bugs.debian.org
Cc: Jari Aalto <jari.aalto@cante.net>, control@bugs.debian.org, debian-release@lists.debian.org
Subject: Re: Bug#291542: rcs: [source] warning: the use of `mktemp' is dangerous, better use `mkstemp'
From: Jeroen van Wolffelaar <jeroen@wolffelaar.nl>
Date: Mon, 7 Feb 2005 00:38:38 +0100
Message-id: <[🔎] 20050206233838.GA16678@wolffelaar.nl>
In-reply-to: <41F142B2.1030400@mnb.org.uk>
References: <E1Cry4h-0004Ha-AW@cante.cante.net> <41F142B2.1030400@mnb.org.uk>

reopen 291542
severity 291542 grave
tags 291542 security sarge
thanks

On Fri, Jan 21, 2005 at 05:58:10PM +0000, Mark Baker wrote:
> Jari Aalto wrote:
> 
> >Severity: minor
> > 
> >
> Minor? It's a potential security hole, albeit not a serious one.

Hm, then why didn't you upgrade this to grave, and tag it security? This
bug needs to be tracked, otherwise chances are that it'd slip in Sarge
as your package is frozen.

Note: I didn't check out the actual claims to a vulnerability, just
following the assassment of the maintainer.

--Jeroen

-- 
Jeroen van Wolffelaar
jeroen@wolffelaar.nl
http://jeroen.A-Eskwadraat.nl

Reply to:

Prev by Date: Re: console-common upload?
Next by Date: Re: Bug#291542: rcs: [source] warning: the use of `mktemp' is dangerous, better use `mkstemp'
Previous by thread: Re: console-common upload?
Next by thread: Re: Bug#291542: rcs: [source] warning: the use of `mktemp' is dangerous, better use `mkstemp'
Index(es):
- Date
- Thread