12827 – fix port editors/joe

Bug 12827 - fix port editors/joe

Summary: fix port editors/joe

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	Normal Affects Only Me
Assignee:	Kris Kennaway

URL:
Keywords:

Depends on:
Blocks:

Reported:	1999-07-27 02:00 UTC by Will Andrews
Modified:	1999-08-30 01:19 UTC (History)
CC List:	0 users

See Also:

Attachments
file.diff (706 bytes, patch) 1999-07-27 02:00 UTC, Will Andrews	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Will Andrews 1999-07-27 02:00:01 UTC

This report was sent in by Trevor Johnson <trevor@jpj.net>, along with a
nice fix which I have tested on FreeBSD to make sure it works.

When joe is abnormally aborted, its DEADJOE file is world readable. This
can be a substantial security problem for editing files that are usually
only supposed to be readable by root - such as /etc/master.passwd.

How-To-Repeat: 
Start up joe like usual. Then kill -HUP it. It will create a DEADJOE file
that is world readable.. regardless of umask settings.

Comment 1 Kris Kennaway freebsd_committer

1999-07-27 13:50:05 UTC

Responsible Changed
From-To: freebsd-ports->kris

I'll take this one.

Comment 2 Kris Kennaway freebsd_committer

1999-08-30 01:18:49 UTC

State Changed
From-To: open->closed

Patch committed. Sorry about the delay - thanks for reminding me.