diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2022-02-15 20:00:48 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2022-02-16 06:59:46 +0100 |
commit | 839c651b044e33b8f755b0ab67baf016edda5071 (patch) | |
tree | 4350f94263e0a8483a960c19c2e48fb2d65b53ef /source/a/aaa_base | |
parent | c4275904773b31ed0f4d803dd927bb1359a92edd (diff) | |
download | current-839c651b044e33b8f755b0ab67baf016edda5071.tar.gz |
Tue Feb 15 20:00:48 UTC 202220220215200048
a/aaa_base-15.1-x86_64-2.txz: Rebuilt.
If root's mailbox did not already exist, it would be created with insecure
permissions leading to possible local information disclosure. This update
ensures that a new mailbox will be created with proper permissions and
ownership, and corrects the permissions on an existing mailbox if they are
found to be incorrect. Thanks to Martin for the bug report.
(* Security fix *)
d/help2man-1.49.1-x86_64-1.txz: Upgraded.
kde/bluedevil-5.24.1-x86_64-1.txz: Upgraded.
kde/breeze-5.24.1-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.24.1-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.24.1-x86_64-1.txz: Upgraded.
kde/drkonqi-5.24.1-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.24.1-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.24.1-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.24.1-x86_64-1.txz: Upgraded.
kde/kdecoration-5.24.1-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.24.1-x86_64-1.txz: Upgraded.
kde/kgamma5-5.24.1-x86_64-1.txz: Upgraded.
kde/khotkeys-5.24.1-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.24.1-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.24.1-x86_64-1.txz: Upgraded.
kde/kscreen-5.24.1-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.24.1-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.24.1-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.24.1-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.24.1-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.24.1-x86_64-1.txz: Upgraded.
kde/kwayland-server-5.24.1-x86_64-1.txz: Upgraded.
kde/kwin-5.24.1-x86_64-1.txz: Upgraded.
kde/kwrited-5.24.1-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.24.1-x86_64-1.txz: Upgraded.
kde/libkscreen-5.24.1-x86_64-1.txz: Upgraded.
kde/libksysguard-5.24.1-x86_64-1.txz: Upgraded.
kde/milou-5.24.1-x86_64-1.txz: Upgraded.
kde/oxygen-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.24.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.24.1-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.24.1-x86_64-1.txz: Upgraded.
kde/powerdevil-5.24.1-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.24.1-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.24.1-x86_64-1.txz: Upgraded.
kde/systemsettings-5.24.1-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.24.1-x86_64-1.txz: Upgraded.
Diffstat (limited to 'source/a/aaa_base')
-rw-r--r-- | source/a/aaa_base/_aaa_base/install/doinst.sh | 12 | ||||
-rwxr-xr-x | source/a/aaa_base/aaa_base.SlackBuild | 2 |
2 files changed, 13 insertions, 1 deletions
diff --git a/source/a/aaa_base/_aaa_base/install/doinst.sh b/source/a/aaa_base/_aaa_base/install/doinst.sh index 3f26c670..0c88db2b 100644 --- a/source/a/aaa_base/_aaa_base/install/doinst.sh +++ b/source/a/aaa_base/_aaa_base/install/doinst.sh @@ -1,3 +1,15 @@ +# Prevent/fix bad permissions on /var/spool/mail/root: +if [ ! -r var/spool/mail/root ]; then + touch var/spool/mail/root + chown root:mail var/spool/mail/root + chmod 660 var/spool/mail/root +fi +# If there is a previous root mailbox that is world readable, then +# fix the ownership/permissions: +if /bin/ls -l var/spool/mail/root | grep -q rw-r--r ; then + chown root:mail var/spool/mail/root + chmod 660 var/spool/mail/root +fi # Send root a welcome email unless we detect that it's there already: if ! grep -q "Welcome to Linux (Slackware 15.0)" var/spool/mail/root 2> /dev/null ; then cat var/spool/mail/root.new >> var/spool/mail/root diff --git a/source/a/aaa_base/aaa_base.SlackBuild b/source/a/aaa_base/aaa_base.SlackBuild index dbedb613..c269f61b 100755 --- a/source/a/aaa_base/aaa_base.SlackBuild +++ b/source/a/aaa_base/aaa_base.SlackBuild @@ -24,7 +24,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=aaa_base VERSION=15.1 -BUILD=${BUILD:-1} +BUILD=${BUILD:-2} # Automatically determine the architecture we're building on: if [ -z "$ARCH" ]; then |