rpms / python-jinja2

Clone
Source Code
GIT

Blame SOURCES/python-jinja2-fix-CVE-2014-0012.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-extras c8 c8-beta c8-beta-stream-2.7 c8-beta-stream-3.8 c8-stream-2.7 c8-stream-3.8 c8s c8s-stream-2.7 c8s-stream-3.8 c9 c9-beta c9s-sig-cloud-openstack-caracal c9s-sig-cloud-openstack-dalmatian c9s-sig-storage-ceph-pacific
  1.   c7-alt
  2.   SOURCES
  3.   python-jinja2-fix-CVE-2014-0012.patch
Blob History Raw
6fca8f 
diff --git a/jinja2/bccache.py b/jinja2/bccache.py
6fca8f 
index 09ff845..c31a905 100644
6fca8f 
--- a/jinja2/bccache.py
6fca8f 
+++ b/jinja2/bccache.py
6fca8f 
@@ -16,6 +16,7 @@
6fca8f 
 """
6fca8f 
 from os import path, listdir
6fca8f 
 import os
6fca8f 
+import stat
6fca8f 
 import sys
6fca8f 
 import errno
6fca8f 
 import marshal
6fca8f 
@@ -230,6 +231,14 @@ class FileSystemBytecodeCache(BytecodeCache):
6fca8f 
             if e.errno != errno.EEXIST:
6fca8f 
                 raise
6fca8f
6fca8f 
+        if os.lstat(actual_dir).st_uid != os.getuid():
6fca8f 
+            raise RuntimeError('Someone else owns temp directory with your '
6fca8f 
+                               'uid. You need to explicitly provide another.')
6fca8f 
+
6fca8f 
+        if stat.S_IMODE(os.lstat(actual_dir).st_mode) != 448:
6fca8f 
+            raise RuntimeError('Bad permission flags on temp directory, '
6fca8f 
+                               'shoud be 0700. You need to fix this.')
6fca8f 
+
6fca8f 
         return actual_dir
6fca8f
6fca8f 
     def _get_cache_filename(self, bucket):

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation