Folder security issue in 1.3.2
Posted: Tue Feb 26, 2008 7:18 pm
Has a fix been published for the vulnerability CVE-2007-6061 in 1.3.x code http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6061? The security issue is caused due to the "AudacityApp::OnInit()" method in src/AudacityApp.cpp handling temporary files in an insecure manner. which can be exploited to delete arbitrary files and directories via symlink attacks, or to cause a deadlock.
Is this issue present in the 1.2.6 stable release?
Thanks,
Is this issue present in the 1.2.6 stable release?
Thanks,