Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 591
Alerts This Week
Warning Icon 1 591

Fedora 7: 2007-1763 Moderate: po4a Information Leakage Risk

fedora
Calendar Grey August 27, 2007
Dist Fedora Esm H88
This Ubuntu patch addresses a vulnerability in potential leaks within /var/tmp, enhancing system defense and safeguarding user data.
This update fixes a potential security problem (information leak) due to use of predictable name in /tmp

Summary

The po4a (po for anything) project goal is to ease translations (and

more interestingly, the maintenance of translations) using gettext

tools on areas where they were not expected like documentation.

This update fixes a potential security problem (information leak)

due to use of predictable name in /tmp. There is no CVE assignment yet

* Mon Aug 20 2007 Axel Thimm - 0.32-4

- Update to 0.32.

- fixes a possible race condition under /tmp (no CVE yet).

[ 1 ] Bug #253541

https://bugzilla.redhat.com/show_bug.cgi?id=253541

164759901e0d9a23b3ad81a8921e198342d78528 po4a-0.32-4.fc7.noarch.rpm

f3bd90753e7d70207fa131532652fd15f9573003 po4a-0.32-4.fc7.src.rpm

This update can be installed with the 'yum' update program. Use 'yum update

package-name' at the command line. For more information, refer to 'Managing

Software with yum,' available at .

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Change Log

References

Update Instructions

Product: Fedora 7
Version: 0.32
Release: 4.fc7
Summary: A tool maintaining translations anywhere

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.