-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 2 Feb 2005 00:12:00 +0200 Source: firehol Binary: firehol Architecture: source all Version: 1.214-3 Distribution: unstable Urgency: high Maintainer: Alexander Wirt <formorer@debian.org> Changed-By: Alexander Wirt <formorer@debian.org> Description: firehol - An easy to use but powerful iptables stateful firewall Changes: firehol (1.214-3) unstable; urgency=high . * firehol.sh, firehol-lib.sh: Removed -p parameters from calls to mkdir. This should properly fix the security problem in #291680. Also made sure that the temporary directory is not removed on exit if we did not create it (removing someone else's directories is rude, even if they might be trying to crack the system). Thanks to Lars Wirzenius for that patch. Note: This fixes the security hole mentioned in CAN-2005-0225 Files: ca61b3a38ec755406507f288f922181a 578 net optional firehol_1.214-3.dsc 04684e77a34f387c39f02f559ae04e91 4516 net optional firehol_1.214-3.diff.gz 0f59b617a5de24302bc790584d759599 156106 net optional firehol_1.214-3_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) iD8DBQFCBL5s01u8mbx9AgoRAoSBAKCaWm27hJmXJxr3gMbYC2UrOty3JwCeJe1Q 7VmZSDLegH4mICGyX+G7HOk= =APT1 -----END PGP SIGNATURE----- Accepted: firehol_1.214-3.diff.gz to pool/main/f/firehol/firehol_1.214-3.diff.gz firehol_1.214-3.dsc to pool/main/f/firehol/firehol_1.214-3.dsc firehol_1.214-3_all.deb to pool/main/f/firehol/firehol_1.214-3_all.deb -- To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org