oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Security risk of vim swap files

From: Ian Zimmerman <itz () very loosely org>
Date: Sun, 5 Nov 2017 22:15:44 -0800
On 2017-11-01 19:12, Solar Designer wrote:


On Wed, Nov 01, 2017 at 07:02:22PM +0100, Jakub Wilk wrote:



Unfortunately, glibc's implementation of tmpfile(3), which is the
most fool-proof interface for dealing with temporary files that the
C library offers, doesn't honour TMPDIR. :(


We've been carrying a patch for this for ages:


Do you know why this has not been changed upstream?  The code (and
infopage) mentions "SVID compatibility".  Do you know of any programs
that break with this change?

-- 
Please don't Cc: me privately on mailing lists and Usenet,
if you also post the followup to the list or newsgroup.
To reply privately _only_ on Usenet, fetch the TXT record for the domain.
Previous By Date Next
Previous By Thread Next

Current thread: