mirror of
git://slackware.nl/current.git
synced 2024-12-28 09:59:53 +01:00
3874039d9c
patches/packages/coreutils-9.5-x86_64-1_slack15.0.txz: Upgraded.
chmod -R now avoids a race where an attacker may replace a traversed file
with a symlink, causing chmod to operate on an unintended file.
[This bug was present in "the beginning".]
split --line-bytes with a mixture of very long and short lines no longer
overwrites the heap.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-0684
(* Security fix *)
11 lines
420 B
Diff
11 lines
420 B
Diff
--- ./src/ls.c.orig 2021-09-24 06:31:05.000000000 -0500
|
|
+++ ./src/ls.c 2021-09-24 19:47:32.230001419 -0500
|
|
@@ -2342,7 +2342,7 @@
|
|
qs = getenv_quoting_style ();
|
|
if (qs < 0)
|
|
qs = (ls_mode == LS_LS
|
|
- ? (stdout_isatty () ? shell_escape_quoting_style : -1)
|
|
+ ? (stdout_isatty () ? escape_quoting_style : -1)
|
|
: escape_quoting_style);
|
|
if (0 <= qs)
|
|
set_quoting_style (NULL, qs);
|