Debian Security Advisory DSA 053-1 (nedit)

Summary
The remote host is missing an update to nedit announced via advisory DSA 053-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20053-1
Insight
The nedit (Nirvana editor) package as shipped in the non-free section accompanying Debian GNU/Linux 2.2/potato had a bug in its printing code: when printing text it would create a temporary file with the to be printed text and pass that on to the print system. The temporary file was not created safely, which could be exploited by an attacked to make nedit overwrite arbitrary files. This has been fixed in version 5.02-7.1.