Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=225796 --- Comment #5 from Michael Schwendt <bugs.michael@xxxxxxx> 2009-05-22 10:54:44 EDT --- Feel free to take over. Robert has fixed all issues I mentioned in comment 1. Build log warns about tmpnam() usage. The implementation is not safe. It creates the temporary file in the current working directory, but that means the user must never work in a directory an attacker may be able to write in, too. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug. _______________________________________________ Fedora-package-review mailing list Fedora-package-review@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-package-review