chm2pdf Insecure Temporary File Creation or DoS Vulnerability

Summary
This host is installed with chm2pdf and is prone to Insecure Temporary File Creation or Denial of Service Vulnerability.
Impact
Successful exploitation will allow local users to delete arbitrary files via symlink attack or corrupt sensitive files, which may also result in a denial of service. Impact Level: Application
Solution
Upgrade to higher version or Apply patches from, http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=20 filename=chm2pdf_nmu.diff att=1 bug=501959 ****** NOTE: Please ignore this warning if already patch is applied. ******
Insight
The vulnerability is due to following, - error in .chm file in /tmp/chm2pdf/orig and /tmp/chm2pdf/work temporary directories. - uses temporary files in directories with fixed names.
Affected
chm2pdf version prior to 0.9.1 on Debian
References