!52 fix CVE-2021-20269

From: @chenhaixaing Reviewed-by: @overweight Signed-off-by: @overweight
2022-08-03 12:09:30 +00:00 · 2022-08-03 12:09:30 +00:00 · 007de1dd37
commit 007de1dd37
parent e568658a70 95ed002ace
2 changed files with 5 additions and 2 deletions
--- a/kdump-lib-initramfs.sh
+++ b/kdump-lib-initramfs.sh
@ -164,7 +164,7 @@ save_vmcore_dmesg_fs() {
    _exitcode=$?
    if [ $_exitcode -eq 0 ]; then
        mv ${_path}/vmcore-dmesg-incomplete.txt ${_path}/vmcore-dmesg.txt
-
+	chmod 400 ${_path}/vmcore-dmesg.txt
        # Make sure file is on disk. There have been instances where later
        # saving vmcore failed and system rebooted without sync and there
        # was no vmcore-dmesg.txt available.
--- a/kexec-tools.spec
+++ b/kexec-tools.spec
@ -4,7 +4,7 @@

 Name: kexec-tools
 Version: 2.0.20
-Release: 17
+Release: 18
 License: GPLv2+
 Summary: The kexec/kdump userspace component
 URL:     https://www.kernel.org/
@ -318,6 +318,9 @@ done
 %endif

 %changelog
+* Wed Aug 3 2022 chenhaixiang <chenhaixiang3@huawei.com> - 2.0.20-18
+- fix CVE-2021-20269
+
 * Mon Apr 25 2022 wangbin <wangbin224@huawei.com> - 2.0.20-17
 - arm64: kdump: deal with a lot of resource entries in /proc/iomem