16 matches found
EUVD-2016-6681
Malware in sbrugna...
EUVD-2003-1356
Malware in sbrugna...
EUVD-2004-2257
Malware in sbrugna...
EUVD-2001-0461
Malware in sbrugna...
PYSEC-2022-72
Tensorflow is an Open Source Machine Learning Framework. In multiple places, TensorFlow uses tempfile.mktemp to create temporary files. While this is acceptable in testing, in utilities and libraries it is dangerous as a different process can create the file between the check for the filename in...
GLSA-200501-33 : MySQL: Insecure temporary file creation
The remote host is affected by the vulnerability described in GLSA-200501-33 MySQL: Insecure temporary file creation Javier Fernandez-Sanguino Pena from the Debian Security Audit Project discovered that the 'mysqlaccess' script creates temporary files in world-writeable directories with predictab...
USN-3-1: GhostScript utility script vulnerabilities
Recently, Trustix Secure Linux discovered some vulnerabilities in the gs-common package. The utilities "pv.sh" and "ps2epsi" created temporary files in an insecure way, which allowed a symlink attack to create or overwrite arbitrary files with the privileges of the user invoking the program...
Ruby symbolic links problem
CGI::Session unsecurely creates temporary file...
RHEL 2.1 : ddskk (RHSA-2003:242)
Updated ddskk packages which fix a temporary file security issue are now available. Daredevil SKK is a simple Kana to Kanji conversion program, an input method of Japanese for Emacs. ddskk does not take appropriate security precautions when creating temporary files. This bug could potentially be...
Low: Red Hat Security Advisory: ddskk security update
Updated ddskk packages which fix a temporary file security issue are now available. Daredevil SKK is a simple Kana to Kanji conversion program, an input method of Japanese for Emacs. ddskk does not take appropriate security precautions when creating temporary files. This bug could potentially be...
CVE-2003-0455
The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files...
[SECURITY] [DSA-302-1] New fuzz packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 302-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 7th, 2003 http://www.debian.org/security/faq -...
[SECURITY] New version of ghostscript released
------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman November 23, 2000 - ------------------------------------------------------------------------ Package : gs Problem type : symlink...
Solaris 2.x7.08 - Catman Race Condition (2)
Solaris 2.x7.08 - Catman Race Condition 2 source: https://www.securityfocus.com/bid/2149/info catman is a utility for creating preformatted man pages, distributed as part of the Solaris Operating Environment. A problem exists which could allow local users to overwrite or corrupt files owned by...
FreeBSD-SA-00:76.tcsh-csh
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:76 Security Advisory FreeBSD, Inc. Topic: tcsh/csh creates insecure temporary file Category: core, ports Module: tcsh, 44bsd-csh Announced: 2000-11-20 Affects: FreeBSD...
[SECURITY] New version of premail fixes /tmp file problem
We have received a report that premail uses temporary files in /tmp using unsecure methods for opening them. This is fixed in the new 0.45-4 release. We recommend you upgrade your samba package immediately. dpkg -i file.deb will install the referenced file. Debian GNU/Linux 1.3.1 alias bo...