This is an automated email from the git hooks/post-receive script. ebourg-guest pushed a commit to branch jessie in repository tomcat8.
commit 1400dd2f5278468bd800d73e8a608d9593f9ea24 Author: Emmanuel Bourg <[email protected]> Date: Wed Oct 19 09:33:18 2016 +0200 Hardened the init.d script, thanks to Paul Szabo (Closes: #840685) --- debian/changelog | 1 + debian/tomcat8.init | 4 ++-- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/debian/changelog b/debian/changelog index f5d2171..7b052bf 100644 --- a/debian/changelog +++ b/debian/changelog @@ -7,6 +7,7 @@ tomcat8 (8.0.14-1+deb8u4) UNRELEASED; urgency=medium - The catalina.policy file generated on startup was affected by a similar vulnerability that could be exploited to overwrite any file on the system. Thanks to Paul Szabo for the report. + * Hardened the init.d script, thanks to Paul Szabo (Closes: #840685) -- Emmanuel Bourg <[email protected]> Sat, 12 Nov 2016 00:34:05 +0100 diff --git a/debian/tomcat8.init b/debian/tomcat8.init index 9558bf7..7457240 100644 --- a/debian/tomcat8.init +++ b/debian/tomcat8.init @@ -212,11 +212,11 @@ case "$1" in # Remove / recreate JVM_TMP directory rm -rf "$JVM_TMP" - mkdir -p "$JVM_TMP" || { + mkdir "$JVM_TMP" || { log_failure_msg "could not create JVM temporary directory" exit 1 } - chown $TOMCAT8_USER "$JVM_TMP" + chown -h $TOMCAT8_USER "$JVM_TMP" catalina_sh start $SECURITY sleep 5 -- Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-java/tomcat8.git _______________________________________________ pkg-java-commits mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits
