|
Family: Debian Local Security Checks --> Category: infos
[DSA927] DSA-927-2 tkdiff Vulnerability Scan
Vulnerability Scan Summary DSA-927-2 tkdiff
Detailed Explanation for this Vulnerability Test
The last update of tkdiff contained a programming error which is
fixed by this version. For completeness we're adding the original
advisory text:
Javier Fernández-Sanguino Peña from the Debian Security Audit project
discovered that tkdiff, a graphical side by side "diff" utility,
creates temporary files in an insecure fashion.
For the old stable distribution (woody) this problem has been fixed in
version 3.08-3woody1.
For the stable distribution (sarge) this problem has been fixed in
version 4.0.2-1sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 4.0.2-4.
We recommend that you upgrade your tkdiff package.
Solution : http://www.debian.org/security/2005/dsa-927
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|