MapServer upstream during a security audit of MapServer v5.6 source
code found a potential buffer overflow in the way MapServer generated
unique temporary filenames. A local attacker could use this flaw to
conduct denial of service attacks.
Upstream patch (against 5-4 SVN branch):
Upstream patch (against trunk):
This issue affects the versions of the mapserver package, as shipped
with Fedora release of 12 and 13.
Created mapserver tracking bugs for this issue
Affects: fedora-all [bug 617314]