security fixes for partially created files

2009-06-25 Paolo Bonzini <bonzini@gnu.org> * execute.c: Do not copy ACLs until the file is copied. * utils.c (ck_mkstemp): Set a restrictive umask on temporary files.
author: Paolo Bonzini <bonzini@gnu.org> 2009-06-25 20:39:37 +0200
committer: Paolo Bonzini <bonzini@gnu.org> 2009-06-26 12:03:10 +0200
commit: 5156c19b23c41f438bf8658e1b9a43a5ff136835 (patch)
tree: 89c5971c55891487ae49c2c62a8b2de416d1786d /NEWS
parent: 06f17e218d6747750f826c6f61feb8bfd1f8fbfc (diff)
download: sed-5156c19b23c41f438bf8658e1b9a43a5ff136835.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 2c68c73..937ea44 100644
--- a/NEWS
+++ b/NEWS
@@ -2,6 +2,9 @@ Sed 4.2a
 
 * fix parsing of s/[[[[[[[[[]//
 
+* temporary files for sed -i are not made group/world-readable until
+  they are complete
+
 ----------------------------------------------------------------------------
 Sed 4.2
author	Paolo Bonzini <bonzini@gnu.org>	2009-06-25 20:39:37 +0200
committer	Paolo Bonzini <bonzini@gnu.org>	2009-06-26 12:03:10 +0200
commit	5156c19b23c41f438bf8658e1b9a43a5ff136835 (patch)
tree	89c5971c55891487ae49c2c62a8b2de416d1786d /NEWS
parent	06f17e218d6747750f826c6f61feb8bfd1f8fbfc (diff)
download	sed-5156c19b23c41f438bf8658e1b9a43a5ff136835.tar.gz