Malin/WPIQ
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix CVE-2024-34528

Browse Source 
Set file permission before writing file
This commit is contained in:
VirtuBox
2024-05-17 23:59:50 +02:00
parent 29f8edea9a
commit 31353f0fef
1 changed files with 2 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
wo/cli/plugins/stack_pref.py
View File

@@ -3,6 +3,7 @@ import os
import random import random
import shutil import shutil
import string import string
import stat
import psutil import psutil
import requests import requests
@@ -71,11 +72,8 @@ def pre_pref(self, apt_packages):
Log.debug(self, 'Writting configuration into MySQL file') Log.debug(self, 'Writting configuration into MySQL file')
conf_path = "/etc/mysql/conf.d/my.cnf.tmp" conf_path = "/etc/mysql/conf.d/my.cnf.tmp"
os.makedirs(os.path.dirname(conf_path), exist_ok=True) os.makedirs(os.path.dirname(conf_path), exist_ok=True)
with open(conf_path, encoding='utf-8', with os.fdopen(os.open(conf_path, os.O_WRONLY | os.O_CREAT, 0o600), 'w', encoding='utf-8') as configfile:
mode='w') as configfile:
config.write(configfile) config.write(configfile)
Log.debug(self, 'Setting my.cnf permission')
WOFileUtils.chmod(self, "/etc/mysql/conf.d/my.cnf.tmp", 0o600)
# add nginx repository # add nginx repository
if set(WOVar.wo_nginx).issubset(set(apt_packages)): if set(WOVar.wo_nginx).issubset(set(apt_packages)):