Date: Sat, 12 Dec 2020 08:03:46 +0000 From: bugzilla-noreply@freebsd.org To: ruby@FreeBSD.org Subject: [Bug 247843] New port: net-mgmt/checkson simple tool for checking system states Message-ID: <bug-247843-21402-Nqlx3QKERb@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-247843-21402@https.bugs.freebsd.org/bugzilla/> References: <bug-247843-21402@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D247843 Matthias Fechner <mfechner@FreeBSD.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|New |In Progress --- Comment #3 from Matthias Fechner <mfechner@FreeBSD.org> --- Could you please fix some security related problems upstream: =3D=3D=3D> SECURITY REPORT: This port has installed the following world-writable files/directorie= s. /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/checks/shell.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/checks/base.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/apiclient.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/context.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/checks/certific= ate.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/ui.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/checks/dns.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/config.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/checks/packages= .rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/checks/packagem= anagers/abstractpkgmgr.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson.rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/lib/checkson/checks/process.= rb /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/README.md /usr/local/lib/ruby/gems/2.7/gems/checkson-1.0/bin/checkson Just release a new version, that fixes this. Let me know if a new version is available, then I will update and commit the port. I already applied some modification and fixes to it: https://gitlab.fechner.net/mfechner/Gitlab/-/commit/6754d28beda732847367303= 0395d0cefd26e0400 --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-247843-21402-Nqlx3QKERb>