freebsd-ports/security/trousers
Niclas Zeising 24f4959a80 MFH: r545264
security/trousers: fix security issues

Fix three security issues in security/trousers:

* CVE-2020-24332
  If the tcsd daemon is started with root privileges,
  the creation of the system.data file is prone to symlink attacks

* CVE-2020-24330
  If the tcsd daemon is started with root privileges,
  it fails to drop the root gid after it is no longer needed

* CVE-2020-24331
  If the tcsd daemon is started with root privileges,
  the tss user has read and write access to the /etc/tcsd.conf file

Add patches to fix potential use-after-free
Fix build with -fno-common

Security:	e37a0a7b-e1a7-11ea-9538-0c9d925bbbc0

Approved by:	ports-secteam (joenum)
2020-08-19 08:37:56 +00:00
..
files
distinfo
Makefile
pkg-descr
pkg-plist