Bug 80671

Summary: japanese/groff: Fix insecure temporary file creation vulnerabilities.
Product: Ports & Packages Reporter: KOMATSU Shinichiro <koma2>
Component: Individual Port(s)Assignee: Tetsurou Okazaki <okazaki>
Status: Closed FIXED    
Severity: Affects Only Me CC: okazaki
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description KOMATSU Shinichiro 2005-05-05 19:40:02 UTC 
Update japanese/groff to Debian version 1.18.1.1_7.
This version contains the following vulnerability fixes:

- groffer uses temp files unsafely (CAN-2004-0969)
- pic2graph and eqn2graph are vulnerable to symlink attack 
  through temporary file (CAN-2004-1296)
Comment 1 Tilman Keskinoz freebsd_committer freebsd_triage 2005-05-07 13:32:39 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->okazaki

Over to maintainer
Comment 2 Tetsurou Okazaki freebsd_committer freebsd_triage 2005-05-09 08:14:21 UTC 
State Changed
From-To: open->closed

Committed, thanks!