https://bugzilla.redhat.com/show_bug.cgi?id=1457832
Bug ID: 1457832
Summary: CVE-2017-6512 perl-File-Path: rmtree/remove_tree race
condition
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-t...@redhat.com
Reporter: ane...@redhat.com
CC: hho...@redhat.com, jor...@redhat.com,
perl-devel@lists.fedoraproject.org,
perl-maint-l...@redhat.com, ppi...@redhat.com
A vulnerability was found in perl File-Path. In the rmtree() and remove_tree()
functions, the chmod()logic to make directories traversable can be abused to
set the mode on an attacker-chosen file to an attacker-chosen value. This is
due to the time-of-check-to-time-of-use (TOCTTOU) race condition between the
stat() that decides the inode is a directory and the chmod() that tries to make
it user-rwx.
Upstream issue:
https://rt.cpan.org/Public/Bug/Display.html?id=121951
Upstream patch:
https://github.com/jkeenan/File-Path/commit/e5ef95276ee8ad471c66ee574a5d42552b3a6af2
--
You are receiving this mail because:
You are on the CC list for the bug.
_______________________________________________
perl-devel mailing list -- perl-devel@lists.fedoraproject.org
To unsubscribe send an email to perl-devel-le...@lists.fedoraproject.org
