TEMP-0784888-F51195

NameTEMP-0784888-F51195
Descriptiondidjvu: insecure use of /tmp when executing c44
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs784888

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
didjvu (PTS)jessie0.2.8-1+deb8u1fixed
stretch0.8.1-1fixed
buster0.8.2-2+deb10u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
didjvusourcewheezy0.2.3-2+deb7u1
didjvusourcejessie0.2.8-1+deb8u1
didjvusource(unstable)0.4-1784888

Notes

https://bitbucket.org/jwilk/didjvu/issue/8
CVE Request: https://www.openwall.com/lists/oss-security/2015/05/09/7

Search for package or bug name: Reporting problems