flexbackup -- insecure temporary file

2006-11-20T00:00:00
ID DSA-1216
Type debian
Reporter Debian
Modified 2006-11-20T00:00:00

Description

Eric Romang discovered that the flexbackup backup tool creates temporary files in an insecure manner, which allows denial of service through a symlink attack.

For the stable distribution (sarge) this problem has been fixed in version 1.2.1-2sarge1.

For the upcoming stable distribution (etch) this problem has been fixed in version 1.2.1-3.

For the unstable distribution (sid) this problem has been fixed in version 1.2.1-3.

We recommend that you upgrade your flexbackup package.