Skip to main content.

2003-Jun-10

Send-pr: security/21840: send-pr uses unsafe tempfile (mrg fixed and closed this on 02/Apr/2004: "use mktemp(1) for safe temp files." I replied because it wasn't pulled up to regular branches yet.)

Looking for unsafe software. 

as `perl -e 'printf "A" x 5000'`
causes core dump, for example.

Make pkgsrc for OpenBSD's pax as ported to Suse Linux.

I noticed old /usr/src/usr.bin/mkdep/ shell scripts that were not used (since C version was made a few years ago). The shell scripts have unsafe use of tmp files. (I mentioned on current-users and the next day, these "reference" files were removed.)