diff options
author | V3n3RiX <venerix@koprulu.sector> | 2022-09-10 10:42:05 +0100 |
---|---|---|
committer | V3n3RiX <venerix@koprulu.sector> | 2022-09-10 10:42:05 +0100 |
commit | 946859e0e36904cffb3e0ccbccb6b7b1347c1cc8 (patch) | |
tree | 0acec77e64f765c013ceda868659a8e125e429df /sys-apps/ipmitool/files/ipmitool-1.8.19-CVE-2011-4339.patch | |
parent | b9baffd9af9383cc886b1583814fe15163017d80 (diff) |
gentoo auto-resync : 10:09:2022 - 10:42:05
Diffstat (limited to 'sys-apps/ipmitool/files/ipmitool-1.8.19-CVE-2011-4339.patch')
-rw-r--r-- | sys-apps/ipmitool/files/ipmitool-1.8.19-CVE-2011-4339.patch | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/sys-apps/ipmitool/files/ipmitool-1.8.19-CVE-2011-4339.patch b/sys-apps/ipmitool/files/ipmitool-1.8.19-CVE-2011-4339.patch new file mode 100644 index 000000000000..4a25280662b5 --- /dev/null +++ b/sys-apps/ipmitool/files/ipmitool-1.8.19-CVE-2011-4339.patch @@ -0,0 +1,20 @@ +Description: CVE-2011-4339 + insecure file permission when creating PID files + based on 112_fix_CVE-2011-4339 +Author: Jörg Frings-Fürst <debian@jff-webhosting.net> +Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651917 +Forwarded: https://sourceforge.net/p/ipmitool/patches/99/ +Last-Update: 2020-10-21 +--- +This patch header follows DEP-3: http://dep.debian.net/deps/dep3/ +diff -Nuar --exclude '*.orig' ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f.orig/lib/helper.c ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f/lib/helper.c +--- ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f.orig/lib/helper.c 2020-08-07 00:53:06.000000000 -0700 ++++ ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f/lib/helper.c 2020-10-21 13:59:02.335206233 -0700 +@@ -917,7 +917,6 @@ + lprintf(LOG_ERR, "chdir failed: %s (%d)", strerror(errno), errno); + exit(1); + } +- umask(0); + + for (fd=0; fd<64; fd++) { + if (fd != intf->fd) |