Use non-predictable filename for downloaded patch file
Since the /tmp directory is readable by everybody on Unix, and since the patch name could be public or easy to guess, a attacker could create a symlink to a file writable by the user running hub, which would be replaced by the patch. This has been assigned CVE-2014-0177
Showing
想要评论请 注册 或 登录