| Summary: | ASTERISK-30029: build: Git security vulnerability fix is sad with our accessing git as root during "make install" | ||
| Reporter: | Joshua C. Colp (jcolp) | Labels: | |
| Date Opened: | 2022-04-26 09:52:44 | Date Closed: | 2022-07-13 17:24:23 |
| Priority: | Major | Regression? | |
| Status: | Closed/Complete | Components: | Core/BuildSystem |
| Versions: | 16.25.1 18.11.1 19.3.1 | Frequency of Occurrence | |
| Related Issues: | |||
| Environment: | Attachments: | ||
| Description: | When installing Asterisk we seemingly use git in some way. If this is run as root but the git repo is your user, then recent versions of git complain due to a fix for a security vulnerability[1].
[1] https://github.blog/2022-04-12-git-security-vulnerability-announced/ | ||
| Comments: | By: Friendly Automation (friendly-automation) 2022-07-13 17:24:23.676-0500 Change 18605 merged by Friendly Automation: Makefile: Avoid git-make user conflict [https://gerrit.asterisk.org/c/asterisk/+/18605|https://gerrit.asterisk.org/c/asterisk/+/18605] By: Friendly Automation (friendly-automation) 2022-07-13 18:35:44.901-0500 Change 18809 merged by Kevin Harwell: Makefile: Avoid git-make user conflict [https://gerrit.asterisk.org/c/asterisk/+/18809|https://gerrit.asterisk.org/c/asterisk/+/18809] By: Friendly Automation (friendly-automation) 2022-07-13 18:36:00.742-0500 Change 18808 merged by Kevin Harwell: Makefile: Avoid git-make user conflict [https://gerrit.asterisk.org/c/asterisk/+/18808|https://gerrit.asterisk.org/c/asterisk/+/18808] By: Friendly Automation (friendly-automation) 2022-07-13 18:36:20.998-0500 Change 18810 merged by Kevin Harwell: Makefile: Avoid git-make user conflict [https://gerrit.asterisk.org/c/asterisk/+/18810|https://gerrit.asterisk.org/c/asterisk/+/18810] | ||