On September 10th 2004, Trustix shared some temporary file vulnerabilities with vendor-sec. After some refinement these were made public on Sep30. These are minor issues (impact: LOW) and therefore should be fixed in future updates, but don't deserve their own security advisory. Temporary file vulnerability in catchsegv. Patch attached as attachment 105440 [details].
catchsegv.sh fixed in cvs.dist glibc/RHEL-2_1/ CVS, glibcbug script removed at the same place. The remaining two patched files are bogus. Is this enough to fix in U7 or do we need a security errata earlier?
Should be fixed in glibc-2.2.4-32.19 in dist-2.1AS-errata-candidate.
*** Bug 148802 has been marked as a duplicate of this bug. ***
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-261.html