https://sourceware.org/bugzilla/show_bug.cgi?id=26945
--- Comment #3 from Nick Clifton <nickc at redhat dot com> --- Created attachment 13003 --> https://sourceware.org/bugzilla/attachment.cgi?id=13003&action=edit Proposed patch Hi Rich, Ok - here is my first attempt at creating a patch. Please could you give it a look over ? There is one place where smart_rename() is called without having a previous call to make_tempname(): arsup.c:ar_save(). I am not sure if represents a possible attack vector, so any advice would be appreciated. Cheers Nick -- You are receiving this mail because: You are on the CC list for the bug.
