Joey Hess [2004-10-25 16:03 -0400]:
> Package: postgresql
> Version: 7.3.4-9
> Severity: normal
> Tags: security
>
> The make_oidjoins_check script, which is only shipped in the source
> package, creates /tmp files insecurely according to CAN-2004-0977 (and
> I've verified this).
>
> It should be fixed, just in case someone happens to find it in the
> source package.
It's shipped in -contrib, I merged this bug with #278336.
For the records, a stable update is ready and to be approved by the
security team; I will do an unstable upload soon.
Hi!
Joey Hess [2004-10-25 16:03 -0400]:
> Package: postgresql
> Version: 7.3.4-9
> Severity: normal
> Tags: security
>
> The make_oidjoins_check script, which is only shipped in the source
> package, creates /tmp files insecurely according to CAN-2004-0977 (and
> I've verified this).
>
> It should be fixed, just in case someone happens to find it in the
> source package.
It's shipped in -contrib, I merged this bug with #278336.
For the records, a stable update is ready and to be approved by the
security team; I will do an unstable upload soon.
Thanks and have a nice day!
Martin
-- www.piware. de www.ubuntulinux .org www.debian. org
Martin Pitt http://
Ubuntu Developer http://
Debian GNU/Linux Developer http://