[tomcat8] 03/08: Hardened the init.d script, thanks to Paul Szabo (Closes: #840685)
Emmanuel Bourg
ebourg-guest at moszumanska.debian.org
Sat Nov 12 01:15:33 UTC 2016
This is an automated email from the git hooks/post-receive script.
ebourg-guest pushed a commit to branch jessie
in repository tomcat8.
commit 1400dd2f5278468bd800d73e8a608d9593f9ea24
Author: Emmanuel Bourg <ebourg at apache.org>
Date: Wed Oct 19 09:33:18 2016 +0200
Hardened the init.d script, thanks to Paul Szabo (Closes: #840685)
---
debian/changelog | 1 +
debian/tomcat8.init | 4 ++--
2 files changed, 3 insertions(+), 2 deletions(-)
diff --git a/debian/changelog b/debian/changelog
index f5d2171..7b052bf 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -7,6 +7,7 @@ tomcat8 (8.0.14-1+deb8u4) UNRELEASED; urgency=medium
- The catalina.policy file generated on startup was affected by a similar
vulnerability that could be exploited to overwrite any file on the system.
Thanks to Paul Szabo for the report.
+ * Hardened the init.d script, thanks to Paul Szabo (Closes: #840685)
-- Emmanuel Bourg <ebourg at apache.org> Sat, 12 Nov 2016 00:34:05 +0100
diff --git a/debian/tomcat8.init b/debian/tomcat8.init
index 9558bf7..7457240 100644
--- a/debian/tomcat8.init
+++ b/debian/tomcat8.init
@@ -212,11 +212,11 @@ case "$1" in
# Remove / recreate JVM_TMP directory
rm -rf "$JVM_TMP"
- mkdir -p "$JVM_TMP" || {
+ mkdir "$JVM_TMP" || {
log_failure_msg "could not create JVM temporary directory"
exit 1
}
- chown $TOMCAT8_USER "$JVM_TMP"
+ chown -h $TOMCAT8_USER "$JVM_TMP"
catalina_sh start $SECURITY
sleep 5
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-java/tomcat8.git
More information about the pkg-java-commits
mailing list