Bug#671255: CVE-2012-2451: CWE-377 Insecure Temporary File
jmm at inutil.org
Mon May 7 16:30:16 UTC 2012
On Sun, May 06, 2012 at 03:20:03PM +0200, gregor herrmann wrote:
> On Wed, 02 May 2012 22:02:13 +0300, Henri Salo wrote:
> > https://bitbucket.org/shlomif/perl-config-inifiles/changeset/a08fa26f4f59
> > CVE-identifier assigned in here: http://seclists.org/oss-sec/2012/q2/225
> Attached is a backport of the fix for squeeze; reviews welcome.
> Dear security and release teams: Please advise on how to proceed;
> does s-p-u sound right for this isse?
Please proceed with s-p-u.
More information about the pkg-perl-maintainers