Lucene search

Debian Security Advisory DSA 927-1 (tkdiff)

Debian Security Advisory DSA 927-1 (tkdiff) update fixes insecure temporary file creation issu

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 20
cvelist	CVE-2005-3343	27 Dec 200523:00	–	cvelist
securityvulns	[Full-disclosure] MDKSA-2006:001 - Updated tkcvs packages fix insecure temporary file vulnerability	4 Jan 200600:00	–	securityvulns
securityvulns	[Full-disclosure] [SECURITY] [DSA 927-1] New tkdiff packages fix insecure temporary file creation	27 Dec 200500:00	–	securityvulns
cve	CVE-2005-3343	27 Dec 200523:03	–	cve
ubuntucve	CVE-2005-3343	27 Dec 200500:00	–	ubuntucve
openvas	Debian Security Advisory DSA 927-1 (tkdiff)	17 Jan 200800:00	–	openvas
openvas	FreeBSD Ports: tkdiff	4 Sep 200800:00	–	openvas
openvas	FreeBSD Ports: tkdiff	4 Sep 200800:00	–	openvas
openvas	Debian Security Advisory DSA 927-2 (tkdiff)	17 Jan 200800:00	–	openvas
openvas	Debian: Security Advisory (DSA-927-1)	17 Jan 200800:00	–	openvas

Source	Link
securityfocus	www.securityfocus.com/bid/16064
secure1	www.secure1.securityspace.com/smysecure/catid.html

# SPDX-FileCopyrightText: 2008 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.56056");
  script_version("2025-01-17T05:37:18+0000");
  script_tag(name:"last_modification", value:"2025-01-17 05:37:18 +0000 (Fri, 17 Jan 2025)");
  script_tag(name:"creation_date", value:"2008-01-17 23:07:13 +0100 (Thu, 17 Jan 2008)");
  script_cve_id("CVE-2005-3343");
  script_tag(name:"cvss_base", value:"4.6");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:P/I:P/A:P");
  script_name("Debian Security Advisory DSA 927-1 (tkdiff)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2008 E-Soft Inc.");
  script_family("Debian Local Security Checks");
  script_tag(name:"solution", value:"For the stable distribution (sarge) this problem has been fixed in
version 4.0.2-1sarge0.

For the unstable distribution (sid) this problem has been fixed in
version 4.0.2-2.

  We recommend that you upgrade your tkdiff package.");

  script_xref(name:"URL", value:"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20927-1");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/16064");
  script_tag(name:"summary", value:"The remote host is missing an update to tkdiff announced via advisory DSA 927-1.  Javier Fernandez-Sanguino Pena from the Debian Security Audit project discovered that tkdiff, a graphical side by side diff utility, creates temporary files in an insecure fashion.  For the old stable distribution (woody) this problem has been fixed in version 3.08-3woody0.

  This VT has been deprecated and merged into the VT 'Debian: Security Advisory (DSA-927)' (OID: 1.3.6.1.4.1.25623.1.0.56057).");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  script_tag(name:"deprecated", value:TRUE);

  exit(0);
}

exit(66);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Jan 2008 00:00Current

6.2Medium risk

Vulners AI Score6.2

CVSS24.6

EPSS0.00073