|
COMMAND enscript symlinks tmp attack SYSTEMS AFFECTED enscript prior 1.6.2-4.1 PROBLEM In Debian Security Advisory DSA-105-1 [http://www.debian.org/security] : The version of enscript (a tool to convert ASCII text to different formats) has been found to create temporary files insecurely. SOLUTION Get enscript 1.6.2-4.1 or later http://security.debian.org/dists/stable/updates/main/source/enscript_1.6.2-4.1.diff.gz http://security.debian.org/dists/stable/updates/main/source/enscript_1.6.2-4.1.dsc http://security.debian.org/dists/stable/updates/main/source/enscript_1.6.2.orig.tar.gz