Back to bug 1938308
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2021-03-12 18:27:58 UTC | Blocks | 1938309 | |
| Eric Christensen | 2021-06-23 14:56:57 UTC | CC | bdettelb, tomckay | |
| Doc Text | A flaw was found in swagger-codegen. The system temporary directory is shared between all local users. When files/directories are created, the default `umask` settings for the process are respected. As a result, by default, most processes/apis will create files/directories with the permissions `-rw-r--r--` and `drwxr-xr-x` respectively, unless an API that explicitly sets safe file permissions is used. Because this vulnerability impacts generated code, the generated code will remain vulnerable until fixed manually. | |||
| Red Hat Bugzilla | 2023-07-07 08:29:53 UTC | Assignee | security-response-team | nobody |
Back to bug 1938308