diff options
Diffstat (limited to 'external/poky/meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch')
-rw-r--r-- | external/poky/meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch | 47 |
1 files changed, 0 insertions, 47 deletions
diff --git a/external/poky/meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch b/external/poky/meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch deleted file mode 100644 index 29c5d984..00000000 --- a/external/poky/meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch +++ /dev/null @@ -1,47 +0,0 @@ -From c7f7fd53780f8caebccc903d61ffc21632b46a6c Mon Sep 17 00:00:00 2001 -From: Matthias Clasen <mclasen@redhat.com> -Date: Tue, 22 Jan 2019 13:26:31 -0500 -Subject: [PATCH] keyfile settings: Use tighter permissions - -When creating directories, create them with 700 permissions, -instead of 777. - -Closes: #1658 - -Upstream-Status: Backport -[https://gitlab.gnome.org/GNOME/glib/commit -/5e4da714f00f6bfb2ccd6d73d61329c6f3a08429] - -CVE: CVE-2019-13012 - -Signed-off-by: Kevin Weng <t-keweng@microsoft.com> ---- - gio/gkeyfilesettingsbackend.c | 5 +++-- - 1 file changed, 3 insertions(+), 2 deletions(-) - -diff --git a/gio/gkeyfilesettingsbackend.c b/gio/gkeyfilesettingsbackend.c -index a37978e83..580a0b0a1 100644 ---- a/gio/gkeyfilesettingsbackend.c -+++ b/gio/gkeyfilesettingsbackend.c -@@ -89,7 +89,8 @@ g_keyfile_settings_backend_keyfile_write (GKeyfileSettingsBackend *kfsb) - - contents = g_key_file_to_data (kfsb->keyfile, &length, NULL); - g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, -- G_FILE_CREATE_REPLACE_DESTINATION, -+ G_FILE_CREATE_REPLACE_DESTINATION | -+ G_FILE_CREATE_PRIVATE, - NULL, NULL, NULL); - - compute_checksum (kfsb->digest, contents, length); -@@ -640,7 +641,7 @@ g_keyfile_settings_backend_new (const gchar *filename, - - kfsb->file = g_file_new_for_path (filename); - kfsb->dir = g_file_get_parent (kfsb->file); -- g_file_make_directory_with_parents (kfsb->dir, NULL, NULL); -+ g_mkdir_with_parents (g_file_peek_path (kfsb->dir), 0700); - - kfsb->file_monitor = g_file_monitor (kfsb->file, 0, NULL, NULL); - kfsb->dir_monitor = g_file_monitor (kfsb->dir, 0, NULL, NULL); --- -2.22.0 - |