[ubuntu/quantal] devscripts 2.12.2 (Accepted)
Scott Kitterman
ubuntu at kitterman.com
Sat Sep 15 18:42:14 UTC 2012
devscripts (2.12.2) unstable; urgency=high
* annotate-output: Fix to prevent symlink attack: don't delete
safely-created file and reuse its name. Instead, create temporary
directory and create FIFOs therein. Also, be sure to remove temporaries
upon catchable signal. Thanks to Jim Meyering for the patch. Fixes
CVE-2012-3500.
Date: 2012-09-01 22:16:41.651953+00:00
Signed-By: Scott Kitterman <ubuntu at kitterman.com>
https://launchpad.net/ubuntu/quantal/+source/devscripts/2.12.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Quantal-changes
mailing list