Re: Security flaw in pgg-gpg-process-region?

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security flaw in pgg-gpg-process-region?

From:	Florian Weimer
Subject:	Re: Security flaw in pgg-gpg-process-region?
Date:	Sun, 03 Sep 2006 18:28:35 +0200

* Reiner Steib:

> In current Emacs CVS in fact `call-process-region' uses temp files.
> Bad.  I think this is a severe security problem, isn't it?

Why?  AFAICS, Emacs uses mkstemp when available, which should get the
permissions right.

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Security flaw in pgg-gpg-process-region?, (continued)
- Re: Security flaw in pgg-gpg-process-region? (was: pgg-gpg-process-region), Richard Stallman, 2006/09/03
- Re: Security flaw in pgg-gpg-process-region?, Florian Weimer <=
  - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/03
    - Re: Security flaw in pgg-gpg-process-region?, Miles Bader, 2006/09/03
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/05
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/05
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/06
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/06
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/07
    - Re: Security flaw in pgg-gpg-process-region?, gdt, 2006/09/06
    - Re: Security flaw in pgg-gpg-process-region?, Miles Bader, 2006/09/06
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/07

Prev by Date: RE: Why are <next> and <prior> not called <page down> and <page up>?
Next by Date: Re: address@hidden: Re: address@hidden: mouse-autoselect-window needs a de lay]]
Previous by thread: Re: Security flaw in pgg-gpg-process-region? (was: pgg-gpg-process-region)
Next by thread: Re: Security flaw in pgg-gpg-process-region?
Index(es):
- Date
- Thread