Date: Thu, 31 Jul 2014 07:12:28 +0200 From: Salvatore Bonaccorso <carnil@...ian.org> To: OSS Security Mailinglist <oss-security@...ts.openwall.com> Cc: Steve Kemp <steve@...ve.org.uk>, CVE Assignments MITRE <cve-assign@...re.org> Subject: CVE Request: XML-DT: Insecure use of temporary files Hi Steve Kemp reported to to the Debian BTS in  that the XML-DT Perl module distribution contains mkdtskel and mkxmltype using insecurely temporary files using the pid of the process in the temporary file name.  https://bugs.debian.org/756566 Could a CVE be assigned for this issue? Regards, Salvatore
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ