Mailinglist Archive: opensuse-bugs (13069 mails)

< Previous Next >
[Bug 459031] VUL-0: [openSUSE:Factory:Contrib/pdfjam] has /tmp problems
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Wed, 7 Jan 2009 13:20:57 -0700 (MST)
  • Message-id: <20090107202057.44913245390@xxxxxxxxxxxxxxxxxxxxxx>
https://bugzilla.novell.com/show_bug.cgi?id=459031

User meissner@xxxxxxxxxx added comment
https://bugzilla.novell.com/show_bug.cgi?id=459031#c4





--- Comment #4 from Marcus Meissner <meissner@xxxxxxxxxx> 2009-01-07 13:20:56
MST ---
Reply-To: oss-security@xxxxxxxxxxxxxxxxxx
Date: Wed, 7 Jan 2009 13:57:46 -0500 (EST)
From: "Steven M. Christey" <coley@xxxxxxxxxxxxxxx>
To: oss-security@xxxxxxxxxxxxxxxxxx
Cc: Tomas Hoger <thoger@xxxxxxxxxx>, coley@xxxxxxxxx
Subject: Re: [oss-security] CVE request - pdfjam


======================================================
Name: CVE-2008-5843
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5843
Reference: MLIST:[oss-security] 20081228 Re: CVE request - pdfjam
Reference: URL:http://openwall.com/lists/oss-security/2008/12/28/3
Reference: CONFIRM:https://bugs.gentoo.org/show_bug.cgi?id=252734

Multiple untrusted search path vulnerabilities in pdfjam allow local
users to gain privileges via a Trojan horse program in (1) the current
working directory or (2) /var/tmp, related to the (a) pdf90, (b)
pdfjoin, and (c) pdfnup scripts.


--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

< Previous Next >