19 matches found
EUVD-2007-4445
Malware in sbrugna...
po4a bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Fedora Update for po4a FEDORA-2007-1763
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for po4a FEDORA-2007-1763
Check for the Version of po4a OpenVAS Vulnerability Test Fedora Update for po4a FEDORA-2007-1763 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Gentoo Security Advisory GLSA 200709-04 (po4a)
The remote host is missing updates announced in advisory GLSA 200709-04. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200709-04 (po4a)
The remote host is missing updates announced in advisory GLSA 200709-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Fedora 7 : po4a-0.32-4.fc7 (2007-1763)
This update fixes a potential security problem information leak due to use of predictable name in /tmp. There is no CVE assignment yet Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automaticall...
GLSA-200709-04 : po4a: Insecure temporary file creation
The remote host is affected by the vulnerability described in GLSA-200709-04 po4a: Insecure temporary file creation The po4a development team reported a race condition in the gettextize function when creating the file '/tmp/gettextization.failed.po'. Impact : A local attacker could perform a...
[ GLSA 200709-04 ] po4a: Insecure temporary file creation
Gentoo Linux Security Advisory GLSA 200709-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
po4a: Insecure temporary file creation
Background po4a is a set of tools for helping with the translation of documentation. Description The po4a development team reported a race condition in the gettextize function when creating the file "/tmp/gettextization.failed.po". Impact A local attacker could perform a symlink attack, possibly...
[SECURITY] Fedora 7 Update: po4a-0.32-4.fc7
The po4a po for anything project goal is to ease translations and more interestingly, the maintenance of translations using gettext tools on areas where they were not expected like documentation...
CVE-2007-4462
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file...
DEBIAN-CVE-2007-4462
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file...
CVE-2007-4462
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file...
CVE-2007-4462
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file...
Arbitrary file deletion
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file...
CVE-2007-4462
CVE-2007-4462 affects po4a before 0.32. The Po4a code path lib/Locale/Po4a/Po.pm is vulnerable to a symlink race involving the temporary file gettextization.failed.po, allowing a local user to overwrite arbitrary files. The risk is described as a local attack with possible file overwrites (owners...
CVE-2007-4462
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file...
CVE-2007-4462
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file...