rpms / python-jinja2

Clone
Source Code
GIT

Blame SOURCES/python-jinja2-fix-CVE-2014-0012.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-extras c8 c8-beta c8-beta-stream-2.7 c8-beta-stream-3.8 c8-stream-2.7 c8-stream-3.8 c8s c8s-stream-2.7 c8s-stream-3.8 c9 c9-beta c9s-sig-cloud-openstack-caracal c9s-sig-cloud-openstack-dalmatian c9s-sig-storage-ceph-pacific
  1.   c7
  2.   SOURCES
  3.   python-jinja2-fix-CVE-2014-0012.patch
Blob History Raw
a0650d 
diff --git a/jinja2/bccache.py b/jinja2/bccache.py
a0650d 
index 09ff845..c31a905 100644
a0650d 
--- a/jinja2/bccache.py
a0650d 
+++ b/jinja2/bccache.py
a0650d 
@@ -16,6 +16,7 @@
a0650d 
 """
a0650d 
 from os import path, listdir
a0650d 
 import os
a0650d 
+import stat
a0650d 
 import sys
a0650d 
 import errno
a0650d 
 import marshal
a0650d 
@@ -230,6 +231,14 @@ class FileSystemBytecodeCache(BytecodeCache):
a0650d 
             if e.errno != errno.EEXIST:
a0650d 
                 raise
a0650d
a0650d 
+        if os.lstat(actual_dir).st_uid != os.getuid():
a0650d 
+            raise RuntimeError('Someone else owns temp directory with your '
a0650d 
+                               'uid. You need to explicitly provide another.')
a0650d 
+
a0650d 
+        if stat.S_IMODE(os.lstat(actual_dir).st_mode) != 448:
a0650d 
+            raise RuntimeError('Bad permission flags on temp directory, '
a0650d 
+                               'shoud be 0700. You need to fix this.')
a0650d 
+
a0650d 
         return actual_dir
a0650d
a0650d 
     def _get_cache_filename(self, bucket):

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation