Debian: DSA-2007-001 Serious: Python Insecure File Handling Issue

Gentoo Linux Security Advisory GLSA 200710-10 https://security.gentoo.org/ Severity: Normal Title: SKK Tools: Insecure temporary file creation Date: October 12, 2007 Bugs: #193121 ID: 200710-10

Synopsis ======= SKK insecurely creates temporary files.
Background ========= SKK is a Japanese input method for Emacs.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-i18n/skktools < 1.2-r1 >= 1.2-r1
========== skkdic-expr.c insecurely writes temporary files to a location in the form $TMPDIR/skkdic$PID.{pag,dir,db}, where $PID is the process ID.
Impact ===== A local attacker could create symbolic links in the directory where the temporary files are written, poi...