Mercurial > gnulib
changeset 16979:1346cf3efb4d
maint.mk: add sc_vulnerable_makefile_CVE-2012-3386
* top/maint.mk (sc_vulnerable_makefile_CVE-2012-3386): New rule.
| author | Jim Meyering <meyering@redhat.com> |
|---|---|
| date | Mon, 09 Jul 2012 16:24:00 +0200 |
| parents | 8d1ddfdb8668 |
| children | 426baed51787 |
| files | ChangeLog top/maint.mk |
| diffstat | 2 files changed, 12 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- a/ChangeLog Mon Jul 09 16:11:34 2012 +0200 +++ b/ChangeLog Mon Jul 09 16:24:00 2012 +0200 @@ -1,5 +1,8 @@ 2012-07-09 Jim Meyering <meyering@redhat.com> + maint.mk: add sc_vulnerable_makefile_CVE-2012-3386 + * top/maint.mk (sc_vulnerable_makefile_CVE-2012-3386): New rule. + maint.mk: _sc_search_regexp, sc_vulnerable_makefile_CVE-2009-4029: fix Bugs in both of those conspired to make the sc_vulnerable_makefile_CVE-2009-4029 rule 99% useless.
--- a/top/maint.mk Mon Jul 09 16:11:34 2012 +0200 +++ b/top/maint.mk Mon Jul 09 16:24:00 2012 +0200 @@ -1223,6 +1223,15 @@ ' see http://bugzilla.redhat.com/542609 for details') \ $(_sc_search_regexp) +sc_vulnerable_makefile_CVE-2012-3386: + @prohibit='chmod a\+w \$$\(distdir\)' \ + in_files=(^\|/)Makefile\\.in$$ \ + halt=$$(printf '%s\n' \ + 'the above files are vulnerable; beware of running' \ + ' "make distcheck", and upgrade to fixed automake' \ + ' see http://bugzilla.redhat.com/CVE-2012-3386 for details') \ + $(_sc_search_regexp) + vc-diff-check: (unset CDPATH; cd $(srcdir) && $(VC) diff) > vc-diffs || : if test -s vc-diffs; then \