Package: pigz
Version: 2.2.4-1
Severity: serious
Tags: security
When asked to compress a file with restricted permissions (like
mode 0600), the .gz file pigz creates while doing this has
usual mode derived from umask (like 0644). If the file is
large enough (and why we would use pigz instead of
Control: retitle -1 CVE-2013-0296: pigz creates temp files with too wide
permissions
Hi
On Fri, Feb 15, 2013 at 12:30:09PM +0400, Michael Tokarev wrote:
When asked to compress a file with restricted permissions (like
mode 0600), the .gz file pigz creates while doing this has
usual mode
Control: retitle -1 pigz creates temp files with too wide permissions
(CVE-2013-0296)
This issue has been assigned CVE-2013-0296.
Thanks,
/mjt
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
3 matches
Mail list logo