oss-sec mailing list archives
Re: CVE request: gri < 2.12.18 insecure temp file generation
From: Josh Bressers <bressers () redhat com>
Date: Thu, 3 Mar 2011 15:38:32 -0500 (EST)
----- Original Message -----
Can I get CVE-identifier for this vulnerability? It's old one :) Software gri is vulnerable to insecure temp file generation. References: http://gri.sourceforge.net/gridoc/html/Version_2_12.html http://security-tracker.debian.org/tracker/TEMP-0000000-6359AF (please note that this URL is not meant for public use as it is temporary)
Steve, Can MITRE take this. It needs a 2008 ID. It appears the commit for this fix is here: https://github.com/dankelley/gri/commit/ddd3ce40b77214f870f3c8f8e495411e01c0f90e Thanks. -- JB
Current thread:
- CVE request: gri < 2.12.18 insecure temp file generation henri (Mar 02)
- Re: CVE request: gri < 2.12.18 insecure temp file generation Josh Bressers (Mar 03)