Monday, December 30, 2019

New vulnerability on the NVD: CVE-2012-5663



The isearch package (textproc/isearch) before 1.47.01nb1 uses the tempnam() function to create insecure temporary files into a publicly-writable area (/tmp).

from Pocket https://ift.tt/39rzpEX
via IFTTT
Posted by at
Labels: , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)