362001 – CVE-2007-3919 xen xenmon.py / xenbaked insecure temporary file accesss [FC6]

Bug 362001 - CVE-2007-3919 xen xenmon.py / xenbaked insecure temporary file accesss [FC6]

Summary: CVE-2007-3919 xen xenmon.py / xenbaked insecure temporary file accesss [FC6]

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	xen
Sub Component:
Version:	6
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Xen Maintainance List
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	CVE-2007-3919
TreeView+	depends on / blocked

Reported:	2007-11-01 15:44 UTC by Lubomir Kundrak
Modified:	2007-12-19 08:41 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2007-12-19 08:41:48 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Lubomir Kundrak 2007-11-01 15:44:52 UTC

FC6 tracking bug: see blocks bug list for full details of the security issue(s).



[bug automatically created by: add-tracking-bugs]

Comment 1 Daniel Berrangé 2007-11-01 15:59:51 UTC

Fix is built & pending an update


* Fri Oct 26 2007 Daniel P. Berrange <berrange> - 3.1.0-13.fc6
- Fixed xenbaked tmpfile flaw (CVE-2007-3919)


$ brew latest-pkg dist-fc6-updates-candidate xen
Build                                     Tag                   Built by
----------------------------------------  --------------------  ----------------
xen-3.0.3-13.fc6                          dist-fc6-updates-candidate  berrange

Comment 2 Lubomir Kundrak 2007-11-01 16:18:15 UTC

Please correct the references in the update to reference this bug and the parent
bug. Thanks!

Note You need to log in before you can comment on or make changes to this bug.