[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: lynx-dev Re: A vulnerability in Lynx (all versions) <bug 004352> [BS
|
From: |
Webmaster Jim |
|
Subject: |
Re: lynx-dev Re: A vulnerability in Lynx (all versions) <bug 004352> [BSDI-Support-Request #41289] |
|
Date: |
Wed, 1 Jul 1998 07:05:53 -0400 |
On Wed, Jul 01, 1998 at 05:38:59AM -0400, Philip Webb wrote:
> 980630 Jeff wrote:
> > This is an old bug report that was just handed to me.
> > I do not see any fixes in Lynx 2.8.
> > The only safe way to work with temporary files in a public directory
> > ie /tmp is to use open(..., O_EXCL|O_CREAT, ...) . Anything else
> > leaves you open to a race condition and the problems documented here.
> >> Date: Mon, 5 May 1997 16:48:30 -0400
> >> Subject: A vulnerability in Lynx (all versions)
> >> To: address@hidden
> AFAIK this was corrected in 2-7-2 & 2-8,
> following considerable discussion on lynx-dev,
> for which see the Archive at www.flora.org/lynx-dev/ .
Also see "CERT Vendor-Initiated Bulletin VB-97.05 July 15, 1997" at
ftp://ftp.cert.org/pub/cert_bulletins/VB-97.05.lynx
++++++++++++++++++++++++++++
Marvin the Paranoid Android.
fortune: not found