Oval Definition:oval:org.mitre.oval:def:8030
Revision Date:2014-06-23Version:18
Title:DSA-1577 gforge -- insecure temporary files
Description:Stephen Gran and Mark Hymers discovered that some scripts run by GForge, a collaborative development tool, open files in write mode in a potentially insecure manner. This may be exploited to overwrite arbitrary files on the local system.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2008-0167
DSA-1577
Platform(s):Debian GNU/Linux 4.0
Product(s):gforge
Definition Synopsis
  • Debian GNU/Linux 4.0 is installed.
  • AND Installed architecture is all
  • AND Packages section
  • gforge-ldap-openldap is earlier than 4.5.14-22etch8
  • OR gforge-mta-exim4 is earlier than 4.5.14-22etch8
  • OR gforge-mta-courier is earlier than 4.5.14-22etch8
  • OR gforge-db-postgresql is earlier than 4.5.14-22etch8
  • OR gforge is earlier than 4.5.14-22etch8
  • OR gforge-common is earlier than 4.5.14-22etch8
  • OR gforge-mta-postfix is earlier than 4.5.14-22etch8
  • OR gforge-shell-postgresql is earlier than 4.5.14-22etch8
  • OR gforge-shell-ldap is earlier than 4.5.14-22etch8
  • OR gforge-lists-mailman is earlier than 4.5.14-22etch8
  • OR gforge-web-apache is earlier than 4.5.14-22etch8
  • OR gforge-mta-exim is earlier than 4.5.14-22etch8
  • OR gforge-ftp-proftpd is earlier than 4.5.14-22etch8
  • OR gforge-dns-bind9 is earlier than 4.5.14-22etch8
    • BACK