Package: otf2bdf / 3.1-5

Metadata

Package Version Patches format
otf2bdf 3.1-5 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
mkinstalldirs.patch | (download)

mkinstalldirs | 40 40 + 0 - 0 !
1 file changed, 40 insertions(+)

 
---
args.patch | (download)

otf2bdf.c | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 
---
freetype2.patch | (download)

configure.in | 14 9 + 5 - 0 !
1 file changed, 9 insertions(+), 5 deletions(-)

 
---
0001 Fix unsafe tmp handling.patch | (download)

otf2bdf.c | 38 8 + 30 - 0 !
1 file changed, 8 insertions(+), 30 deletions(-)

 
 fix unsafe /tmp handling

otf2bdf opened a file in /tmp with a predictable name and without taking
any precautions to ensure that it didn't already exist.  This meant that
it was trivial for a user other than the one running otf2bdf to cause
trouble by creating those files ahead of time.  This doesn't seem to be
usefully exploitable on a default Debian system, though.

This commit fixes the problem by using the tmpfile() function instead,
which also has the benefit of somewhat simplifying the code, since
there's no need to clean up the temporary file afterwards.