makary/writefreely
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Changed the permission of config file to allow access to only owner. This fixes CVE-2025-24337

Browse source
This commit is contained in:
Aryan Dame 2025-02-17 13:58:41 +05:30
parent a7fa19f2e4
commit 76581b6ed9
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
app.go
View file

@ -554,7 +554,7 @@ requests. We recommend supplying a valid host name.`)
} }
if network == "unix" { if network == "unix" {
err = os.Chmod(bindAddress, 0o666) err = os.Chmod(bindAddress, 0o600)
if err != nil { if err != nil {
log.Error("Could not update socket permissions: %v", err) log.Error("Could not update socket permissions: %v", err)
os.Exit(1) os.Exit(1)