[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SCM] Debian package checker branch, master, updated. 2.5.11-269-g4fa9095

The following commit has been merged in the master branch:
commit 60e1f1d6e71463d2120d7b56b2dd87da0e1a0b4f
Author: Niels Thykier <niels@thykier.net>
Date:   Thu Apr 4 23:52:42 2013 +0200

    c/shared-libs: Ignore maintscript that are symlinks
    
    Signed-off-by: Niels Thykier <niels@thykier.net>

diff --git a/checks/shared-libs b/checks/shared-libs
index c9377a2..660cf03 100644
--- a/checks/shared-libs
+++ b/checks/shared-libs
@@ -593,7 +593,7 @@ if (keys %shlibs_control and keys %symbols_control) {
 }
 
 # 6th step: check pre- and post- control files
-if (-f $info->control('preinst')) {
+if (-f $info->control('preinst') and not -l $info->control('preinst')) {
     local $_ = slurp_entire_file($info->control('preinst'));
     if (/^[^\#]*\bldconfig\b/m) {
         tag 'preinst-calls-ldconfig';
@@ -601,7 +601,7 @@ if (-f $info->control('preinst')) {
 }
 
 my $we_call_postinst=0;
-if (-f $info->control('postinst')) {
+if (-f $info->control('postinst') and not -l $info->control('postinst')) {
     local $_ = slurp_entire_file($info->control('postinst'));
 
     # Decide if we call ldconfig
@@ -625,14 +625,14 @@ if ($multiarch eq 'foreign' and $must_call_ldconfig) {
     tag 'shlib-in-multi-arch-foreign-package', $must_call_ldconfig;
 }
 
-if (-f $info->control('prerm')) {
+if (-f $info->control('prerm') and not -l $info->control('prerm')) {
     local $_ = slurp_entire_file($info->control('prerm'));
     if (/^[^\#]*\bldconfig\b/m) {
         tag 'prerm-calls-ldconfig';
     }
 }
 
-if (-f $info->control('postrm')) {
+if (-f $info->control('postrm') and not -l $info->control('postrm')) {
     local $_ = slurp_entire_file($info->control('postrm'));
 
     # Decide if we call ldconfig
diff --git a/debian/changelog b/debian/changelog
index fadc1c4..301e76a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -141,6 +141,8 @@ lintian (2.5.12) UNRELEASED; urgency=low
   * checks/shared-libs:
     + [NT] Special case gcc packages when looking for dev symlinks.
       gcc stores its dev symlinks in some special directories.
+    + [NT] Fix path traversal issue that could leak information
+      about the host system.
   * checks/source-copyright{,.desc}:
     + [JW,NT] Add a separate tag for ambiguous DEP-5 paragraphs,
       where Lintian cannot reliably figure out what is intended.

-- 
Debian package checker
Reply to: