1
Description: Fix insecure temporary files handling in pkit.py
3
Bug-Debian: http://bugs.debian.org/725876
4
Bug-RedHat: https://bugzilla.redhat.com/show_bug.cgi?id=1035243
5
Bug-SuSE: https://bugzilla.novell.com/show_bug.cgi?id=852368
6
Bug-Gentoo: https://bugs.gentoo.org/show_bug.cgi?id=492712
7
Author: Moritz Muehlenhoff <jmm@debian.org>
8
Last-Update: 2014-01-12
10
diff -aur hplip-3.12.6.orig/base/pkit.py hplip-3.12.6/base/pkit.py
11
--- hplip-3.12.6.orig/base/pkit.py 2012-06-18 12:44:13.000000000 +0200
12
+++ hplip-3.12.6/base/pkit.py 2013-12-10 13:04:22.916674893 +0100
20
from base.logger import *
22
class BackendService(PolicyKitService):
23
INTERFACE_NAME = 'com.hp.hplip'
24
SERVICE_NAME = 'com.hp.hplip'
25
- LOGFILE_NAME = '/tmp/hp-pkservice.log'
26
+ LOGFILE_NAME = tempfile.mktemp(prefix="hp-pkservice-", suffix=".log")
28
def __init__(self, connection=None, path='/', logfile=LOGFILE_NAME):
29
if connection is None: