235827 – (CVE-2008-4985) media-video/vdr: audit wrt insecure temp file usage (CVE-2008-4985)

Bug 235827 (CVE-2008-4985) - media-video/vdr: audit wrt insecure temp file usage (CVE-2008-4985)

Summary: media-video/vdr: audit wrt insecure temp file usage (CVE-2008-4985)

Status:	RESOLVED INVALID

Alias:	CVE-2008-4985

Product:	Gentoo Security
Classification:	Unclassified
Component:	Auditing (show other bugs)
Hardware:	All All

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://bugs.debian.org/496421
Whiteboard:	B3 [upstream]
Keywords:

Depends on:
Blocks:	debian-tempfile
	Show dependency tree

Reported:	2008-08-26 18:41 UTC by Christian Hoffmann (RETIRED)
Modified:	2008-11-07 02:50 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Christian Hoffmann (RETIRED) gentoo-dev

2008-08-26 18:41:00 UTC

See $URL and bug 235770.

Comment 1 Stefan Behte (RETIRED) gentoo-dev

2008-11-07 02:41:54 UTC

URL:       http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4985
Published: 2008-11-06
Severity:  Medium

http://dev.gentoo.org/~rbu/security/debiantemp/vdr-dbg

Comment 2 Stefan Behte (RETIRED) gentoo-dev

2008-11-07 02:50:46 UTC

vdrleaktest is debian-specific, it's not in media-video/vdr-1.4.7-r10 or media-video/vdr-1.6.0_p2.

find ./ -name vdrleaktest
and
grep -ire "/tmp/" -e memleaktest vdr-1.6.0
do not find anything.

So, closing as INVALID.