openembedded-core.git - Mirror of openembedded-core

diff options

author	Wenzong Fan <wenzong.fan@windriver.com>	2013-06-17 22:28:50 -0400
committer	Paul Eggleton <paul.eggleton@linux.intel.com>	2013-07-08 10:30:21 +0100
commit	247157849f41f2d386b102a4b3d81fd11e8f3ac0 (patch)
tree	3a161a7a3c8d92eb9eba3bf7f1b5b525c4372fc0 /scripts/cleanup-workdir
parent	1b9b8be17937548135b4c93fc9753c7bd4fc5fbd (diff)
download	openembedded-core-247157849f41f2d386b102a4b3d81fd11e8f3ac0.tar.gz openembedded-core-247157849f41f2d386b102a4b3d81fd11e8f3ac0.tar.bz2 openembedded-core-247157849f41f2d386b102a4b3d81fd11e8f3ac0.zip

logrotate: fix for CVE-2011-1548

If a logfile is a symlink, it may be read when being compressed, being copied (copy, copytruncate) or mailed. Secure data (eg. password files) may be exposed. Portback nofollow.patch from: http://logrotate.sourcearchive.com/downloads/3.8.1-5/logrotate_3.8.1-5.debian.tar.gz (From OE-Core master rev: d0e3fc1b28fc16200adbe690aa27124041036ba3) Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/cleanup-workdir')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: