Package:gzip
Something does not make sense here. There appears to be a MAJOR gzip
security issue that seems to violate some basic tenants of Unix security.
I have reproduced this on both the latest patched Woody, and the latest
Sarge.
Here is the issue.
Create a test file with the following permissions in a directory your
non-privileged account has write access to.
-rw-r--r-- 1 root root 8 Jun 3 18:31 testing.txt
Be logged into your unprivileged account.
gzip the testing.txt file.
It now looks like this
-rw-r--r-- 1 rdorn rdorn 40 Jun 3 18:31 testing.txt.gz
The fact that I can gzip this file is bad enough, it deletes the
original....but wait it gets worse.
now unzip this file
-rw-r--r-- 1 rdorn rdorn 8 Jun 3 18:31 testing.txt
I now have write access to this file. This appears to only be the case
within directories that I have write access to.
Why does gzip have the ability to overwrite the Unix permissions by
changing ownership. I guess it would be worse if this would work in
places like /etc or /bin ... but still.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
