Re: [Groff] Bug#56702: [PATCH] /tmp race in gxditview, suspected poor te

groff

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Groff] Bug#56702: [PATCH] /tmp race in gxditview, suspected poor te

From:	Werner LEMBERG
Subject:	Re: [Groff] Bug#56702: [PATCH] /tmp race in gxditview, suspected poor temp file handling in grohtml, etc
Date:	Wed, 01 Mar 2000 12:04:01 GMT

> 2) xditview creates a temporary file in /tmp, with mktemp and fopen,
> which is again insecure because a file could be placed there between
> the two calls (as documented in the libc docs for mktemp).
> 
> 3) indxbib creates temporary files; it uses mktemp and creat to open
> these files, which is not safe since a file could be placed there
> between the two calls.
> 
> 4) xtotroff (seems to be a helper program for xditview) has a minor
> race in opening output files.

I've finally applied the patches.  Thanks again.


    Werner

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Groff] Bug#56702: [PATCH] /tmp race in gxditview, suspected poor temp file handling in grohtml, etc, Werner LEMBERG <=

Next by Date: [Groff] Re: UTF-8/Unicode for groff
Next by thread: [Groff] Re: UTF-8/Unicode for groff
Index(es):
- Date
- Thread