Re: stalin: CVE-2015-8697: Insecure use of temporary files

To: debian-security@lists.debian.org
Cc: ftpmaster@debian.org, barak@pearlmutter.net
Subject: Re: stalin: CVE-2015-8697: Insecure use of temporary files
From: Rob Browning <rlb@defaultvalue.org>
Date: Wed, 20 Jan 2016 05:41:56 -0600
Message-id: <[🔎] 8760yo7a0r.fsf@trouble.defaultvalue.org>
In-reply-to: <[🔎] 87bn8ne9qt.fsf@trouble.defaultvalue.org>
References: <[🔎] 87bn8ne9qt.fsf@trouble.defaultvalue.org>

Rob Browning <rlb@defaultvalue.org> writes:

> I believe the package is scheduled to be removed next week, and I'm
> still waiting on a discussion with upstream about a (non-trivial) patch
> I wrote to attempt to address the problem.
>
> So I wanted to ask for an opinion about the claim here that it might be
> reasonable to lower the severity:
>
>   https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808730#20
>
> Thanks

I just wanted to ping you, since today's the removal deadline.

Thanks
-- 
Rob Browning
rlb @defaultvalue.org and @debian.org
GPG as of 2011-07-10 E6A9 DA3C C9FD 1FF8 C676 D2C4 C0F0 39E9 ED1B 597A
GPG as of 2002-11-03 14DD 432F AE39 534D B592 F9A0 25C8 D377 8C7E 73A4

Reply to:

Follow-Ups:
- Re: stalin: CVE-2015-8697: Insecure use of temporary files
  - From: Salvatore Bonaccorso <carnil@debian.org>

References:
- Re: stalin: CVE-2015-8697: Insecure use of temporary files
  - From: Rob Browning <rlb@defaultvalue.org>

Prev by Date: Re: [SECURITY] [DSA 3448-1] linux security update
Next by Date: Re: stalin: CVE-2015-8697: Insecure use of temporary files
Previous by thread: Re: stalin: CVE-2015-8697: Insecure use of temporary files
Next by thread: Re: stalin: CVE-2015-8697: Insecure use of temporary files
Index(es):
- Date
- Thread