CVE-2008-5375, symlink attack wrt #250474.

Package-Manager: portage-2.1.6.13/cvs/Linux x86_64
author: Samuli Suominen <ssuominen@gentoo.org> 2009-05-12 06:19:03 +0000
committer: Samuli Suominen <ssuominen@gentoo.org> 2009-05-12 06:19:03 +0000
commit: 5d00e1fb9a4dbbdf14a389602b14abac113419bf (patch)
tree: 5ad63b3a98ffd61591e248df4f67f778f8d699c3 /media-sound/cmus/files
parent: Mask media-sound/rat for removal wrt security #208464, CVE-2008-0553. (diff)
download: historical-5d00e1fb9a4dbbdf14a389602b14abac113419bf.tar.gz
historical-5d00e1fb9a4dbbdf14a389602b14abac113419bf.tar.bz2
historical-5d00e1fb9a4dbbdf14a389602b14abac113419bf.zip
1 files changed, 12 insertions, 0 deletions
diff --git a/media-sound/cmus/files/cmus-2.2.0-symlink_attack.patch b/media-sound/cmus/files/cmus-2.2.0-symlink_attack.patch
new file mode 100644
index 000000000000..3c3e09c55cfe
--- /dev/null
+++ b/media-sound/cmus/files/cmus-2.2.0-symlink_attack.patch
@@ -0,0 +1,12 @@
+diff -ur cmus-2.2.0.orig/cmus-status-display cmus-2.2.0/cmus-status-display
+--- cmus-2.2.0.orig/cmus-status-display	2007-07-27 17:52:13.000000000 +0300
++++ cmus-2.2.0/cmus-status-display	2009-05-12 09:12:56.000000000 +0300
+@@ -19,7 +19,7 @@
+ output()
+ {
+ 	# write status to /tmp/cmus-status (not very useful though)
+-	echo "$*" >> /tmp/cmus-status 2>&1
++	echo "$*" >> ~/.cmus-status 2>&1
+ 
+ 	# WMI (http://wmi.modprobe.de/)
+ 	#wmiremote -t "$*" &> /dev/null
author	Samuli Suominen <ssuominen@gentoo.org>	2009-05-12 06:19:03 +0000
committer	Samuli Suominen <ssuominen@gentoo.org>	2009-05-12 06:19:03 +0000
commit	5d00e1fb9a4dbbdf14a389602b14abac113419bf (patch)
tree	5ad63b3a98ffd61591e248df4f67f778f8d699c3 /media-sound/cmus/files
parent	Mask media-sound/rat for removal wrt security #208464, CVE-2008-0553. (diff)
download	historical-5d00e1fb9a4dbbdf14a389602b14abac113419bf.tar.gz historical-5d00e1fb9a4dbbdf14a389602b14abac113419bf.tar.bz2 historical-5d00e1fb9a4dbbdf14a389602b14abac113419bf.zip