Summary: | media-gfx/gpicview Insecure tempfile and shell metadata in filename (CVE-2008-3791, CVE-2008-3904) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | graphics+disabled |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://thread.gmane.org/gmane.comp.security.oss.general/845 | ||
Whiteboard: | ~2 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Robert Buchholz (RETIRED)
2008-09-03 00:06:18 UTC
*gpicview-0.1.10 (12 Sep 2008) 12 Sep 2008; Markus Meier <maekke@gentoo.org> -gpicview-0.1.8.ebuild, -gpicview-0.1.9.ebuild, +gpicview-0.1.10.ebuild: bump to 0.1.10, remove old ebuilds, security bug #236525 this should fix the mentioned security bugs (I checked /tmp/rot.jpg bug) confirmed, thanks for bumping. Closing [noglsa]. |