ERoaster Local Insecure Temporary File Creation Vulnerability

ERoaster Local Insecure Temporary File Creation Vulnerability

Solution:
Debian has made fixes available in advisory DSA 366-1. See referenced advisory for additional details.

Mandrake has released an advisory (MDKSA-2003:083) that addresses this issue. Please see the attached advisory for details on obtaining and applying fixes.

Gentoo Linux has released a security advisory (200309-04) to address this issue. Users who are affected by this issue are advised to do the following:

emerge sync
emerge eroaster
emerge clean

eroaster eroaster 2.1 .0

Debian eroaster_2.1.0.0.3-2woody1_all.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/e/eroaster/eroaster_2.1.0 .0.3-2woody1_all.deb

Mandrake eroaster-2.1.0-6.1mdk.noarch.rpm
Mandrake Corporate Server 2.1
http://www.mandrakesecure.net/en/ftp.php

Mandrake eroaster-2.1.0-6.1mdk.noarch.rpm
Mandrake Linux 9.0
http://www.mandrakesecure.net/en/ftp.php

Mandrake eroaster-2.1.0-6.1mdk.noarch.rpm
Mandrake Linux 9.1
http://www.mandrakesecure.net/en/ftp.php