rpms/rpm - rpm - AlmaLinux OS Foundation Git Server

rpms/rpm

Fork 0

Commit Graph

Author	SHA1	Message	Date
Florian Festi	284b6bc6f8	Fix regression in new code CVE-2005-4889-rpm-fails-to-drop-SUID-SGID-bits-on-package fails with the new code as older glibc versions don't support AT_SYMLINK_NOFOLLOW for fchmodat. Fixed upstream as https://github.com/rpm-software-management/rpm/pull/2759 Resolves: RHEL-9561 RHEL-9563 RHEL-9565	2023-11-10 10:39:39 +01:00
Florian Festi	0408f935ff	Backport file handling code from rpm-4.19 Fixes CVE-2021-35937, CVE-2021-35938 and CVE-2021-35939 Resolves: RHEL-9561 RHEL-9563 RHEL-9565	2023-11-02 12:33:09 +01:00

Author

SHA1

Message

Date

Florian Festi

284b6bc6f8

Fix regression in new code

CVE-2005-4889-rpm-fails-to-drop-SUID-SGID-bits-on-package fails with the
new code as older glibc versions don't support AT_SYMLINK_NOFOLLOW for
fchmodat. Fixed upstream as

https://github.com/rpm-software-management/rpm/pull/2759

Resolves: RHEL-9561 RHEL-9563 RHEL-9565

2023-11-10 10:39:39 +01:00

Florian Festi

0408f935ff

Backport file handling code from rpm-4.19

Fixes CVE-2021-35937, CVE-2021-35938 and CVE-2021-35939
Resolves: RHEL-9561 RHEL-9563 RHEL-9565

2023-11-02 12:33:09 +01:00

2 Commits