From 7b97d056a1deae9e885765153f596e8e30e334b1 Mon Sep 17 00:00:00 2001
From: Jeremy Allison <jra@samba.org>
Date: Sat, 11 Mar 2000 01:02:45 +0000
Subject: You *must* use O_EXCL when using mktemp (security issue). Glad this
 code never shipped :-). This is not a problem in 2.0.x. Jeremy. (This used to
 be commit a0c302f4d03ab07d697115fa8520d0cb0b2ba616)

---
 source3/rpc_server/srv_spoolss_nt.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/source3/rpc_server/srv_spoolss_nt.c b/source3/rpc_server/srv_spoolss_nt.c
index b4aefe44c1..ef0b7fad9b 100644
--- a/source3/rpc_server/srv_spoolss_nt.c
+++ b/source3/rpc_server/srv_spoolss_nt.c
@@ -2596,7 +2596,7 @@ uint32 _spoolss_startdocprinter( const POLICY_HND *handle, uint32 level,
 	slprintf(tempname,sizeof(tempname)-1, "%s/smb_print.XXXXXX",lp_pathname(snum));  
 	pstrcpy(fname, (char *)mktemp(tempname));
 
-	fd=open(fname, O_WRONLY|O_CREAT|O_TRUNC, S_IRUSR|S_IWUSR );
+	fd=open(fname, O_WRONLY|O_CREAT|O_TRUNC|O_EXCL, S_IRUSR|S_IWUSR );
 	DEBUG(4,("Temp spool file created: [%s]\n", fname));
 
 	Printer->current_jobid=fd;
-- 
cgit