Description: CVE-2011-4339 insecure file permission when creating PID files based on 112_fix_CVE-2011-4339 Author: Jörg Frings-Fürst Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651917 Forwarded: https://sourceforge.net/p/ipmitool/patches/99/ Last-Update: 2020-10-21 --- This patch header follows DEP-3: http://dep.debian.net/deps/dep3/ diff -Nuar --exclude '*.orig' ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f.orig/lib/helper.c ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f/lib/helper.c --- ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f.orig/lib/helper.c 2020-08-07 00:53:06.000000000 -0700 +++ ipmitool-50d8c36edf9657720e25445a435dabc44572cf5f/lib/helper.c 2020-10-21 13:59:02.335206233 -0700 @@ -917,7 +917,6 @@ lprintf(LOG_ERR, "chdir failed: %s (%d)", strerror(errno), errno); exit(1); } - umask(0); for (fd=0; fd<64; fd++) { if (fd != intf->fd)