FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-01-17 01:42:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
a02c9595-e018-11dd-a765-0030843d3802	pdfjam -- insecure temporary files Secunia reports: Some security issues have been reported in PDFjam, which can be exploited by malicious, local users to perform certain actions with escalated privileges. The security issues are caused due to the "pdf90", "pdfjoin", and "pdfnup" scripts using temporary files in an insecure manner. This can be exploited to overwrite arbitrary files via symlink attacks. Discovery 2008-12-05 Entry 2009-01-11 pdfjam < 1.20_4 CVE-2008-5743 https://bugzilla.novell.com/show_bug.cgi?id=459031 http://secunia.com/advisories/33278

VuXML ID

Description

a02c9595-e018-11dd-a765-0030843d3802

pdfjam -- insecure temporary files

Secunia reports:

Some security issues have been reported in PDFjam, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

The security issues are caused due to the "pdf90", "pdfjoin", and "pdfnup" scripts using temporary files in an insecure manner. This can be exploited to overwrite arbitrary files via symlink attacks.

Discovery 2008-12-05
Entry 2009-01-11
pdfjam

< 1.20_4

CVE-2008-5743
https://bugzilla.novell.com/show_bug.cgi?id=459031
http://secunia.com/advisories/33278