diff options
| author |   Tiziano Müller <dev-zero@gentoo.org> | 2009-11-12 09:33:32 +0000 |
|---|---|---|
| committer | Tiziano Müller <dev-zero@gentoo.org> | 2009-11-12 09:33:32 +0000 |
| commit | 7103c50a845b7a43a69522d479be964ec6be2e09 (patch) | |
| tree | dc8f6e7bade4f8cd373511f6633384f44d99ac9b /net-firewall/fwbuilder/files | |
| parent | Version bump. (diff) | |
| download | historical-7103c50a845b7a43a69522d479be964ec6be2e09.tar.gz historical-7103c50a845b7a43a69522d479be964ec6be2e09.tar.bz2 historical-7103c50a845b7a43a69522d479be964ec6be2e09.zip | |
Version bump (also fixes security bug #285861).
Package-Manager: portage-2.2_rc46/cvs/Linux x86_64
Diffstat (limited to 'net-firewall/fwbuilder/files')
| -rw-r--r-- | net-firewall/fwbuilder/files/3.0.7-secure-mktemp.patch | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/net-firewall/fwbuilder/files/3.0.7-secure-mktemp.patch b/net-firewall/fwbuilder/files/3.0.7-secure-mktemp.patch new file mode 100644 index 000000000000..1074e58f3b95 --- /dev/null +++ b/net-firewall/fwbuilder/files/3.0.7-secure-mktemp.patch @@ -0,0 +1,15 @@ +diff -Naur fwbuilder-3.0.7.orig/src/ipt/RoutingCompiler_ipt_writers.cpp fwbuilder-3.0.7/src/ipt/RoutingCompiler_ipt_writers.cpp +--- fwbuilder-3.0.7.orig/src/ipt/RoutingCompiler_ipt_writers.cpp 2009-11-12 09:54:55.913414002 +0100 ++++ fwbuilder-3.0.7/src/ipt/RoutingCompiler_ipt_writers.cpp 2009-11-12 10:06:38.086706330 +0100 +@@ -147,9 +147,9 @@ + << "#\n#\n# ============== ROUTING RULES ============== \n#" + << endl; + +- compiler->output << "TMPDIRNAME=\"/tmp/.fwbuilder.tempdir.$$\"" << endl; ++ compiler->output << "TMPDIRNAME=\"$(umask 077 && mktemp --tmpdir=/tmp -d .fwbuilder.tempdir.XXXXXXXXXX)\"" << endl; ++ compiler->output << "[ $? != 0 ] && exit 1" << endl; + compiler->output << "TMPFILENAME=\"$TMPDIRNAME/.fwbuilder.out\"" << endl; +- compiler->output << "(umask 077 && mkdir $TMPDIRNAME) || exit 1" << endl; + compiler->output << endl; + + compiler->output << "# This function stops stdout redirection" |