oss-sec mailing list archives
Re: [Bug-wget] CVE Request - Gnu Wget 1.17 - Design Error Vulnerability
From: Tim Rühsen <tim.ruehsen () gmx de>
Date: Sun, 14 Aug 2016 21:24:49 +0200
Hi, here is a patch to limit the file modes to u+rw for temp. downloaded files. Not sure if your proof of concept still works or not - but it seems a good thing anyways. Regards, Tim
Attachment:
0001-Limit-file-mode-to-u-rw-on-temp.-downloaded-files.patch
Description:
Attachment:
signature.asc
Description: This is a digitally signed message part.
Current thread:
- CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Misra, Deapesh (Aug 11)
- Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Kurt Seifried (Aug 11)
- Re: [Bug-wget] [oss-security] CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Tim Rühsen (Aug 12)
- Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Jordan Bettis (Aug 25)
- Re: [Bug-wget] CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Tim Rühsen (Aug 14)
- Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability cve-assign (Aug 27)
- Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Misra, Deapesh (Aug 28)
- Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability cve-assign (Aug 28)
- Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Misra, Deapesh (Aug 28)
- Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability Kurt Seifried (Aug 11)