Re: [Secure-testing-commits] r9971 - / data data/CVE
> > DSA: (Name in brackets if someone prepares a DSA)
> > Binary-package: feta (1.4.16) (jmm)
> > + Binary-package: freeradius-dialupadmin (2.0.4+dfsg-4)
>
> I just had a quick chat with the maintainer and it seems that the insecure
> temp file handling exists only in example scripts, which are not enabled by
> default and need to be enabled manually be the user. The scripts are for
> database archiving.
Ok, I moved them to the DSA list since they're targeted for regular
operation like stats generation, but we'll take the maintainer's advice.
> Should we move freeradius-dialupadmin to SPU candidates or did I miss
> anything?
Ok, just did so.
Cheers,
Moritz
Reply to: