6 matches found
[SECURITY] [DSA 960-3] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-3 [email protected] http://www.debian.org/security/ Martin Schulze March 20th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 960-3] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-3 [email protected] http://www.debian.org/security/ Martin Schulze March 20th, 2006 http://www.debian.org/security/faq -...
CVE-2005-4536
CVE-2005-4536 affects the Mail::Audit Perl module (libmail-audit-perl). The issue is that when logging is enabled, the module creates temporary files with predictable names, enabling a local attacker to overwrite files via a symlink attack on the [PID]-audit.log file. Debian advisories and OpenVA...
[SECURITY] [DSA 960-2] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-2 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 960-1] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-1 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...
[Full-disclosure] [SECURITY] [DSA 960-1] New libmail-audit-perl packages fix insecure temporary file use
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 960-1 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...