Lintian tag: possibly-insecure-handling-of-tmp-files-in-maintainer-script

Type: warning

Description (from `lintian-explain-tags`)

The named maintainer script appears to access a file or a directory in
/tmp or a similar folder for temporary data. Working directly in such
folders, which are usually world-writable, can easily lead to serious
security or privacy bugs.

Please consider using the mktemp utility from the coreutils package when
creating temporary files or directories.

Please refer to Scripts (Section 10.4) in the Debian Policy Manual for
details.

Visibility: warning
Show-Always: no
Check: maintainer-scripts/temporary-files

Affected packages

source	version	binary	level	tag	count	information
aide	0.19.2-3	aide-common/0.19.2-3	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/var/tmp [postinst:46]
aide	0.19.3-1	aide-common/0.19.3-1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/var/tmp [postinst:46]
b43-fwcutter	1:019-14	firmware-b43-installer/1:019-14	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:64]
b43-fwcutter	1:019-14	firmware-b43legacy-installer/1:019-14	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:57]
bcron	0.11-25	bcron/0.11-25	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/var/tmp [prerm:27]
bcron	0.11-25	bcron/0.11-25	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/var/tmp [prerm:26]
debian-edu-config	2.13.0	debian-edu-config/2.13.0	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	$TMPDIR/all.ldif [postinst:182]
debian-edu-config	2.13.0	debian-edu-config/2.13.0	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	$TMPDIR/all.ldif [postinst:184]
debian-edu-config	2.13.0	debian-edu-config/2.13.0	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	$TMPDIR/all.ldif [postinst:177]
debian-security-support	1:14+2026.05.07	debian-security-support/1:14+2026.05.07	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:40]
designate	1:22.0.0-1	designate-common/1:22.0.0-1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:1201]
ecryptfs-utils	111-8	ecryptfs-utils/111-8+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postinst:13]
ecryptfs-utils	111-8	ecryptfs-utils/111-8+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postinst:14]
ecryptfs-utils	111-8	ecryptfs-utils/111-8+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postinst:16]
mdcfg	1.86	mdcfg/1.86	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:443]
mdcfg	1.86	mdcfg/1.86	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:447]
nova	2:33.0.1-2	nova-common/2:33.0.1-2	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/var/tmp [prerm:17]
nova	2:33.0.1-2	nova-common/2:33.0.1-2	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/var/tmp [prerm:9]
nvi	1.81.6-24	nvi/1.81.6-24	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	6	/var/tmp [postinst:21]
nvi	1.81.6-24	nvi/1.81.6-24	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	6	/var/tmp [postinst:17]
nvi	1.81.6-24	nvi/1.81.6-24	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	6	/var/tmp [postrm:5]
nvi	1.81.6-24	nvi/1.81.6-24	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	6	/var/tmp [postinst:16]
nvi	1.81.6-24	nvi/1.81.6-24	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	6	/var/tmp [postrm:6]
nvi	1.81.6-24	nvi/1.81.6-24	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	6	/var/tmp [postinst:15]
nvi	1.81.6-24	nvi/1.81.6-24+b1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	2	/var/tmp [postinst:21]
nvi	1.81.6-24	nvi/1.81.6-24+b1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	2	/var/tmp [postinst:17]
nvi	1.81.6-24	nvi/1.81.6-24+b1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	2	/var/tmp [postrm:5]
nvi	1.81.6-24	nvi/1.81.6-24+b1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	2	/var/tmp [postinst:16]
nvi	1.81.6-24	nvi/1.81.6-24+b1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	2	/var/tmp [postrm:6]
nvi	1.81.6-24	nvi/1.81.6-24+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	2	/var/tmp [postinst:15]
rescue	1.107	rescue-mode/1.107	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:341]
rescue	1.107	rescue-mode/1.107	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/tmp [postinst:343]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:12]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:13]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:10]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:14]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:11]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:38]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:39]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:37]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:36]
seedfiles	1.6-2	seedfiles/1.6-2+b1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:35]
squeak-vm	1:4.10.2.2614+20120917~dfsg-3.1	squeak-vm/1:4.10.2.2614+20120917~dfsg-3.1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postinst:24]
systemd	260.1-1	systemd/260.1-1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:18]
systemd	261~rc4-1	systemd/261~rc4-1	overridden	possibly-insecure-handling-of-tmp-files-in-maintainer-script	8	/tmp [postrm:19]
unit-translator	0.8-1	utrans-rc/0.8-1	warning	possibly-insecure-handling-of-tmp-files-in-maintainer-script	1	/var/tmp [postinst:8]

Lintian tag: possibly-insecure-handling-of-tmp-files-in-maintainer-script

Type: warning

Description (from lintian-explain-tags)

Affected packages

Description (from `lintian-explain-tags`)