15 matches found
Debian Security Advisory DSA 960-1 (libmail-audit-perl)
The remote host is missing an update to libmail-audit-perl announced via advisory DSA 960-1. Niko Tyni discovered that the Mail::Audit module, a Perl library for creating simple mail filters, logs to a temporary file with a predictable filename in an insecure fashion when logging is turned on,...
Debian Security Advisory DSA 960-3 (libmail-audit-perl)
The remote host is missing an update to libmail-audit-perl announced via advisory DSA 960-3. The former update caused temporary files to be created in the current working directory due to a wrong function argument. This update will create temporary files in the users home directory if HOME is set...
Debian Security Advisory DSA 960-2 (libmail-audit-perl)
The remote host is missing an update to libmail-audit-perl announced via advisory DSA 960-2. This update only corrects the update for sarge, the version in woody is correct. Niko Tyni discovered that the Mail::Audit module, a Perl library for creating simple mail filters, logs to a temporary file...
Debian: Security Advisory (DSA-960-3)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 960-1 (libmail-audit-perl)
The remote host is missing an update to libmail-audit-perl announced via advisory DSA 960-1. Niko Tyni discovered that the Mail::Audit module, a Perl library for creating simple mail filters, logs to a temporary file with a predictable filename in an insecure fashion when logging is turned on,...
Debian Security Advisory DSA 960-2 (libmail-audit-perl)
The remote host is missing an update to libmail-audit-perl announced via advisory DSA 960-2. This update only corrects the update for sarge, the version in woody is correct. Niko Tyni discovered that the Mail::Audit module, a Perl library for creating simple mail filters, logs to a temporary file...
Debian DSA-960-3 : libmail-audit-perl - insecure temporary file creation
The former update caused temporary files to be created in the current working directory due to a wrong function argument. This update will create temporary files in the users home directory if HOME is set or in the common temporary directory otherwise, usually /tmp. For completeness below is a co...
[SECURITY] [DSA 960-3] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-3 [email protected] http://www.debian.org/security/ Martin Schulze March 20th, 2006 http://www.debian.org/security/faq -...
CVE-2005-4536
Mail::Audit module in libmail-audit-perl 2.1-5, when logging is enabled without a default log file specified, uses predictable log filenames, which allows local users to overwrite arbitrary files via a symlink attack on the PID-audit.log temporary file...
CVE-2005-4536
CVE-2005-4536 affects the Mail::Audit Perl module (libmail-audit-perl). The issue is that when logging is enabled, the module creates temporary files with predictable names, enabling a local attacker to overwrite files via a symlink attack on the [PID]-audit.log file. Debian advisories and OpenVA...
[SECURITY] [DSA 960-2] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-2 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 960-2] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-2 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...
DSA-960-3 libmail-audit-perl - insecure temporary file creation
Bulletin has no description...
CVE-2005-4536
Mail::Audit module in libmail-audit-perl 2.1-5, when logging is enabled without a default log file specified, uses predictable log filenames, which allows local users to overwrite arbitrary files via a symlink attack on the PID-audit.log temporary file...
CVE-2005-4536
Mail::Audit module in libmail-audit-perl 2.1-5, when logging is enabled without a default log file specified, uses predictable log filenames, which allows local users to overwrite arbitrary files via a symlink attack on the PID-audit.log temporary file...