Vulnerability	Vulnerable Version
M Incorrect Default Permissions bzfs is a bzfs is a reliable near real-time, parallel replication and backup command-line tool for ZFS. It replicates snapshots from many local or remote source ZFS datasets (and their descendants) to local or remote destination datasets, using zfs send/receive and ssh, and can operate at sub-second intervals across large fleets of hosts. Affected versions of this package are vulnerable to Incorrect Default Permissions due to the use of `os.makedirs()` without enforcing a restrictive umask when creating temporary directories. This causes the directories to inherit overly permissive default permissions, allowing unauthorized users to read or modify sensitive files stored within them. An attacker can exploit this by accessing or tampering with these improperly protected directories, potentially leading to information disclosure or data corruption. How to fix Incorrect Default Permissions? Upgrade `bzfs` to version 1.14.0 or higher.	[,1.14.0)

Incorrect Default Permissions

bzfs is a bzfs is a reliable near real-time, parallel replication and backup command-line tool for ZFS. It replicates snapshots from many local or remote source ZFS datasets (and their descendants) to local or remote destination datasets, using zfs send/receive and ssh, and can operate at sub-second intervals across large fleets of hosts.

Affected versions of this package are vulnerable to Incorrect Default Permissions due to the use of os.makedirs() without enforcing a restrictive umask when creating temporary directories. This causes the directories to inherit overly permissive default permissions, allowing unauthorized users to read or modify sensitive files stored within them. An attacker can exploit this by accessing or tampering with these improperly protected directories, potentially leading to information disclosure or data corruption.

How to fix Incorrect Default Permissions?

Upgrade bzfs to version 1.14.0 or higher.

[,1.14.0)

Go back to all versions of this package