nFPM is an alternative to fpm. The file permissions on the checked-in files were not maintained. Hence, when nfpm packaged
the files (without extra config for enforcing it’s own permissions) files could go out with bad permissions (chmod 666 or 777). Anyone using nfpm for creating packages without checking/setting file permissions before packaging could result in bad permissions for files/folders.
Metrics
Affected Vendors & Products
References
History
Fri, 10 Jan 2025 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: GitHub_M
Published:
Updated: 2025-01-10T20:36:22.810Z
Reserved: 2023-05-11T16:33:45.734Z
Link: CVE-2023-32698

Updated: 2024-08-02T15:25:36.897Z

Status : Modified
Published: 2023-05-30T04:15:10.187
Modified: 2024-11-21T08:03:52.560
Link: CVE-2023-32698

No data.