Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 26 Oct 2015 19:23:21 +0100
From: Michael Scherer <misc@...b.org>
To: cve-assign@...re.org
Cc: oss-security@...ts.openwall.com
Subject: CVE request - open-vm-tools using predictable filename in /tmp

Hi,

It seems that vm-support, from open-vm-tools use /tmp to
store output of diagnostic software.

See 
https://github.com/vmware/open-vm-tools/blob/master/open-vm-tools/scripts/common/vm-support#L200

Can a CVE be assigned ?

-- 
Michael Scherer

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ