[Buildroot] [PATCH-2019.02.x] package/libglib2: backport upstream security fix for CVE-2019-12450

Peter Korsgaard peter at korsgaard.com
Thu Jun 27 16:02:24 UTC 2019


>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > Fixes CVE-2019-12450: file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0
 > through 2.61.1 does not properly restrict file permissions while a copy
 > operation is in progress.  Instead, default permissions are used.

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed to 2019.02.x and 2019.05.x, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list