Re: Bug#482476: marked as done (Security: Unsafe lock file creation can be used to truncate arbitrary files)

To: deity@lists.debian.org
Cc: debian-release@lists.debian.org
Subject: Re: Bug#482476: marked as done (Security: Unsafe lock file creation can be used to truncate arbitrary files)
From: Daniel Burrows <dburrows@debian.org>
Date: Wed, 28 May 2008 19:58:53 -0700
Message-id: <[🔎] 20080529025853.GA4947@alpaca>
Mail-followup-to: deity@lists.debian.org, debian-release@lists.debian.org
In-reply-to: <handler.482476.D482476.121198463427731.ackdone@bugs.debian.org>
References: <E1K1ME9-0001BD-Tz@ries.debian.org> <20080523031907.20213.33086.reportbug@satoko.is.fushizen.net> <handler.482476.D482476.121198463427731.ackdone@bugs.debian.org>

On Wed, May 28, 2008 at 02:27:55PM +0000, Debian Bug Tracking System <owner@bugs.debian.org> was heard to say:
> Changes: 
>  apt (0.7.14) unstable; urgency=low

  [snip]

>    [ Otavio Salvador ]
>    * Apply patch to avoid truncating of arbitrary files. Thanks to Bryan
>      Donlan <bdonlan@fushizen.net> for the patch. Closes: #482476

  Should this be urgency=high?  (as per the devref section 5.8.5.3)

  Daniel

Reply to:

Follow-Ups:
- Re: Bug#482476: marked as done (Security: Unsafe lock file creation can be used to truncate arbitrary files)
  - From: Otavio Salvador <otavio@debian.org>

Prev by Date: Re: RFC: expat transition or update - before or after lenny?
Next by Date: Re: Bug#482476: marked as done (Security: Unsafe lock file creation can be used to truncate arbitrary files)
Previous by thread: Re: Some [more] packages blocked for the gcc-defaults transition
Next by thread: Re: Bug#482476: marked as done (Security: Unsafe lock file creation can be used to truncate arbitrary files)
Index(es):
- Date
- Thread