Infodrom Oldenburg
— xsane —
| 4.3.2002: Security Fixes | xsane | 0.50 |
|---|---|---|
| The former version opened temporary files in /tmp without certain
precaution and guessable filenames. This could be exploited by
malicious users to fors the user to overwrite important files of his
(or of root, if xsane was running as root).
This has been fixed byintroducing /tmp/xsane-${LOGNAME:-$UID} as location for all temporary files, created securely upon startup. |
||
| Download: Patch | ||