From 87e74a85f5fa3978960cae66b1e8c44d84456a7b Mon Sep 17 00:00:00 2001 From: Moritz Muehlenhoff Date: Tue, 13 Sep 2005 20:46:01 +0000 Subject: kdebase FTBFS with gcc 4, so I'll prepare the kdelibs/kate fix first (with included fix), and once kdelibs is fixed I'll prepare a fixed kdebase package that depends upon the DTSA-fixed version from kdelibs. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@1964 e39458fd-73e7-0310-bf30-c45bca0a0e42 --- data/DTSA/advs/17-kdebase.adv | 13 ------------- data/DTSA/advs/17-kdelibs.adv | 15 +++++++++++++++ 2 files changed, 15 insertions(+), 13 deletions(-) delete mode 100644 data/DTSA/advs/17-kdebase.adv create mode 100644 data/DTSA/advs/17-kdelibs.adv (limited to 'data/DTSA/advs') diff --git a/data/DTSA/advs/17-kdebase.adv b/data/DTSA/advs/17-kdebase.adv deleted file mode 100644 index 73ea055789..0000000000 --- a/data/DTSA/advs/17-kdebase.adv +++ /dev/null @@ -1,13 +0,0 @@ -source: kdebase -date: September 10th, 2005 -author: Moritz Muehlenhoff -vuln-type: insecure permissions, race condition -problem-scope: local -debian-specifc: no -cve: CAN-2005-1920 CAN-2005-2494 -vendor-advisory: -testing-fix: xxx -sid-fix: 4:3.4.2-2 -upgrade: apt-get install xxxx - -xxx multiline description here diff --git a/data/DTSA/advs/17-kdelibs.adv b/data/DTSA/advs/17-kdelibs.adv new file mode 100644 index 0000000000..4b12cbd030 --- /dev/null +++ b/data/DTSA/advs/17-kdelibs.adv @@ -0,0 +1,15 @@ +source: kdelibs +date: September 13th, 2005 +author: Moritz Muehlenhoff +vuln-type: insecure default permissions +problem-scope: local +debian-specifc: no +cve: CAN-2005-1920 +vendor-advisory: +testing-fix: 4:3.3.2-6.1etch1 +sid-fix: 4:3.4.2-1 +upgrade: apt-get install kdelibs4 + +kate always created backup files for edited files with default permissions, +even if the original permissions were stricter. This could lead to information +disclosure. \ No newline at end of file -- cgit v1.2.3