Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists

On Thu, Nov 13, 2008 at 3:39 AM, Shlomi Fish <shlomif@iglu.org.il> wrote:
>> What I was expressing is that the CPAN shell can do the twiddling to strip
>> flags at the point of extraction, rather than PAUSE stopping it at the
>> gate. Archive::Tar already does this (see
>> $Archive::Tar::INSECURE_EXTRACT_MODE).
>
> Archive::Tar does, but Archive::Extract (which CPANPLUS uses) doesn't.

It was a bug.  Addressed in 0.28 as a result of these discussions.
The next non-development release of CPANPLUS will use the new
Archive::Extract and close the security hole under discussion.

-- David

• [PATCH] ExtUtils::MakeMaker and world writable files in dists by Cosimo Streppone
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Jonathan Rockway
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by andreas.koenig.7os6VVqR
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by demerphq
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by David Golden
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by demerphq
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Jonathan Rockway
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by andreas.koenig.7os6VVqR
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Aristotle Pagaltzis
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Smylers
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by demerphq
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Smylers
• RE: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Jan Dubois
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by chromatic
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by demerphq
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by andreas.koenig.7os6VVqR
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Cosimo Streppone
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by andreas.koenig.7os6VVqR
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Smylers
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Smylers
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Smylers
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Shlomi Fish
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by David Golden
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Shlomi Fish
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by David Cantrell
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Aristotle Pagaltzis
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Shlomi Fish
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Aristotle Pagaltzis
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Aristotle Pagaltzis
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Michael G Schwern
• Re: [PATCH] ExtUtils::MakeMaker and world writable files in dists by Cosimo Streppone