BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
CVE-2013-0162 rubygem-ruby_parser: incorrect temporary file usage / Public Service Announcement Feb 22 2013 06:00AM
Kurt Seifried (kseifried redhat com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This is a relatively minor issue, hence no embargo.

Michael Scherer (mscherer (at) redhat (dot) com [email concealed]) of Red Hat found:

Looking for incorrect /tmp/ usage, I found the following piece of code
in /usr/share/gems/gems/ruby_parser-2.0.4/lib/gauntlet_rubyparser.rb
(ht...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus