diff --git a/0003-remove-the-executable-permission-of-non-root-users-f.patch b/0003-remove-the-executable-permission-of-non-root-users-f.patch new file mode 100644 index 0000000000000000000000000000000000000000..6da583ff885280883a7fb079d0553d46c40ab916 --- /dev/null +++ b/0003-remove-the-executable-permission-of-non-root-users-f.patch @@ -0,0 +1,26 @@ +From 2aa0a7ccd957307f098b4a36e4e55a37d512204a Mon Sep 17 00:00:00 2001 +From: Qiumiao Zhang +Date: Mon, 19 Dec 2022 10:43:12 +0800 +Subject: [PATCH] remove the executable permission of non root users from hook + scripts + +Signed-off-by: Qiumiao Zhang +--- + usr/Euler/project/util/CommonFunction | 1 + + 1 file changed, 1 insertion(+) + +diff --git a/usr/Euler/project/util/CommonFunction b/usr/Euler/project/util/CommonFunction +index b10dc7e..3527af6 100644 +--- a/usr/Euler/project/util/CommonFunction ++++ b/usr/Euler/project/util/CommonFunction +@@ -75,6 +75,7 @@ function INIT_Execute_Hook() + fi + fi + done ++ chmod g-x,o-x ${hookdir}/S* > /dev/null 2>&1 + fi + + if [ "x${installbreak}" == "x${hookbase}" ]; then +-- +2.27.0 + diff --git a/install-scripts.spec b/install-scripts.spec index 1d5fdaaca157e043c34bd00abc2467196f7d5599..4bf0775fea25475307b50d3ed27ee2a52c1e3401 100644 --- a/install-scripts.spec +++ b/install-scripts.spec @@ -3,7 +3,7 @@ Summary: scripts for system installation Group: Applications/System License: MulanPSL-2.0 Version: 1.2 -Release: 4 +Release: 5 SOURCE0: %{name}-%{version}.tar.gz Patch0001: 0001-add-support-for-nvme-disk.patch @@ -102,6 +102,13 @@ rm -rf %{_tmppath}/%{name}-%{version} rm -rf $RPM_BUILD_DIR/%{name}-%{version} %changelog +* Mon Dec 19 2022 zhangqiumiao - 1.2-5 +- Type:bugfix +- CVE:NA +- SUG:NA +- DESC:after executing hook scripts, remove their executable permission + of non root users + * Sat Nov 5 2022 zhangqiumiao - 1.2-4 - Type:requirement - CVE:NA