From 1acd35357cd98781bce1004872f232aea2f95c26 Mon Sep 17 00:00:00 2001 From: maxice8 Date: Tue, 16 Oct 2018 11:49:43 -0300 Subject: [PATCH] libcgroup: fix CVE-2018-14348 --- srcpkgs/libcgroup/patches/CVE-2018-14348.patch | 12 ++++++++++++ srcpkgs/libcgroup/template | 4 ++-- 2 files changed, 14 insertions(+), 2 deletions(-) create mode 100644 srcpkgs/libcgroup/patches/CVE-2018-14348.patch diff --git a/srcpkgs/libcgroup/patches/CVE-2018-14348.patch b/srcpkgs/libcgroup/patches/CVE-2018-14348.patch new file mode 100644 index 00000000000..0aa1f906ff6 --- /dev/null +++ b/srcpkgs/libcgroup/patches/CVE-2018-14348.patch @@ -0,0 +1,12 @@ +--- src/daemon/cgrulesengd.c ++++ src/daemon/cgrulesengd.c +@@ -889,9 +889,6 @@ + } else if (pid > 0) { + exit(EXIT_SUCCESS); + } +- +- /* Change the file mode mask. */ +- umask(0); + } else { + flog(LOG_DEBUG, "Not using daemon mode\n"); + pid = getpid(); diff --git a/srcpkgs/libcgroup/template b/srcpkgs/libcgroup/template index 02d46c314aa..0a2cb87587e 100644 --- a/srcpkgs/libcgroup/template +++ b/srcpkgs/libcgroup/template @@ -1,7 +1,7 @@ # Template file for 'libcgroup' pkgname=libcgroup version=0.41 -revision=7 +revision=8 build_style=gnu-configure configure_args="--sbindir=/usr/bin --enable-pam-module-dir=/usr/lib/security" hostmakedepends="flex automake libtool" @@ -10,7 +10,7 @@ short_desc="Library that abstracts the control group file system in Linux" maintainer="Juan RP " license="LGPL-2.1" homepage="http://libcg.sourceforge.net" -distfiles="${SOURCEFORGE_SITE}/libcg/$pkgname-$version.tar.bz2" +distfiles="${SOURCEFORGE_SITE}/libcg/${pkgname}-${version}.tar.bz2" checksum=e4e38bdc7ef70645ce33740ddcca051248d56b53283c0dc6d404e17706f6fb51 case "$XBPS_TARGET_MACHINE" in