On Wed, Oct 01, 2008 at 05:01:46PM +0200, Ansgar Burchardt wrote: > Hi, > > jumpnbump handles files in /tmp in an unsecure manner, allowing overwrite of > files via a symlink attack (see #500611). > > The security team said the update is probably more suited for a stable point > update, not an upload to security.debian.org. > > I prepared an update for Etch and tested it in a stable chroot. I couldn't > test sound tough (doesn't seem to work in my chroot at all), but it is > almost the same fix as for unstable. > > I attached an interdiff for the proposed update. > Please upload and re-ping when it's ready. Neil -- <pixie> hermanr_: I never studied german <pixie> I can just read some of it because it makes sense <Tolimar> . o O ( There is stuff Ganneff writes, which makes sense? )
Attachment:
signature.asc
Description: Digital signature