[Bf-committers] Question about CVS-2008-1103
gsr.b3d at infernal-iceberg.com
Thu Jan 15 21:35:54 CET 2009
Jochen at herr-schmitt.de (2009-01-15 at 2121.16 +0100):
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> H schrieb:
> > Jochen Schmitt wrote on 20090115:
> >> I wold to ask, if there a solution fot the issue described on
> >> comment #12 of https://bugzilla.redhat.com/show_bug.cgi?id=444535
> > heh :) I was wondering (7y ago) when this would pop up. Both
> > patches are fine by me.
> Both? I only know one, I will be nice, if you can give me a reference
> to the patches you are in mind to.
I guess he means the ones in comments #2 and #3.
OTOH, using a hidden config dir as temp is ugly, IMHO. So is using
$HOME (tmpfs or local tmps vs networked homes, clean up, etc).
The question I have then is if full fix of all the file access issues
(the CVE shows one thing, but at least I know a case in which Blender
can destroy part of own config) would be welcome or a waste of time?
More information about the Bf-committers