Ubuntu Security Notice USN-243-1
16th January, 2006
tuxpaint vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 5.10
Details
Javier Fern�ez-Sanguino Pe�iscovered that the tuxpaint-import.sh
script created a temporary file in an insecure way. This could allow a
symlink attack to create or overwrite arbitrary files with the
privileges of the user running tuxpaint.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 5.10:
- tuxpaint
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
None