public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
nixpkgs/nixos
History
Jörg Thalheim 731917a800
cups: mount private /tmp 
printer driver and wrapper are often not written with security in mind.

While reviewing https://github.com/NixOS/nixpkgs/pull/25654 I found
a symlink-race vulnerability within the wrapper code, when writing
unique files in /tmp.
I expect this script to be reused in other models as well
as similar vulnerabilities in the code of other vendors. Therefore
I propose to make /tmp of cups.service private so that only processes
with the same privileges are able to access these files.
2017-05-10 18:03:42 +01:00
..
doc/manual
Merge pull request #15353 (improve xrandrHeads)
2017-05-02 23:14:26 +02:00
lib
make-disk-image: change to be less VM-centric
2017-04-24 02:30:00 +00:00
maintainers
make-disk-image: change to be less VM-centric
2017-04-24 02:30:00 +00:00
modules
cups: mount private /tmp
2017-05-10 18:03:42 +01:00
tests
Merge pull request #24131 from nand0p/buildbot-0.9.5
2017-05-03 07:56:29 +02:00
COPYING
default.nix
Remove nixFallback
2017-03-06 15:54:50 +01:00
README
release-combined.nix
nixos: Add a VM test for the SLiM display manager
2017-04-23 19:25:27 +02:00
release-small.nix
nixos/release-small.nix: cleanup to use default versions
2017-01-27 15:33:54 +01:00
release.nix
nixos/tests: add tests for exercising various hardening features
2017-04-30 12:05:42 +02:00

README 

*** NixOS ***

NixOS is a Linux distribution based on the purely functional package
management system Nix.  More information can be found at
http://nixos.org/nixos and in the manual in doc/manual.