[Buildroot] [PATCH-2019.02.x] package/libglib2: backport upstream security fix for CVE-2019-12450
Peter Korsgaard
peter at korsgaard.com
Thu Jun 27 16:02:24 UTC 2019
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Fixes CVE-2019-12450: file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0
> through 2.61.1 does not properly restrict file permissions while a copy
> operation is in progress. Instead, default permissions are used.
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed to 2019.02.x and 2019.05.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list