Bug#671255: CVE-2012-2451: CWE-377 Insecure Temporary File
Moritz Muehlenhoff
jmm at inutil.org
Mon May 7 16:30:16 UTC 2012
On Sun, May 06, 2012 at 03:20:03PM +0200, gregor herrmann wrote:
> On Wed, 02 May 2012 22:02:13 +0300, Henri Salo wrote:
>
> > https://bitbucket.org/shlomif/perl-config-inifiles/changeset/a08fa26f4f59
> > CVE-identifier assigned in here: http://seclists.org/oss-sec/2012/q2/225
>
> Attached is a backport of the fix for squeeze; reviews welcome.
>
> Dear security and release teams: Please advise on how to proceed;
> does s-p-u sound right for this isse?
Please proceed with s-p-u.
Cheers,
Moritz
More information about the pkg-perl-maintainers
mailing list