maint.mk: add sc_vulnerable_makefile_CVE-2012-3386

* top/maint.mk (sc_vulnerable_makefile_CVE-2012-3386): New rule.
author: Jim Meyering <meyering@redhat.com> 2012-07-09 16:24:00 +0200
committer: Jim Meyering <meyering@redhat.com> 2012-07-09 16:24:00 +0200
commit: 48fe477c9008efadab8cf8c0c3240d824c12a8b9 (patch)
tree: 7104dd73cbd348896d113e090834cf9d99c02d4c /top/maint.mk
parent: b38d59184505f6119a5ffbf3b4a068fd7a9b8fe8 (diff)
download: gnulib-48fe477c9008efadab8cf8c0c3240d824c12a8b9.tar.gz
1 files changed, 9 insertions, 0 deletions
diff --git a/top/maint.mk b/top/maint.mk
index 2361d00a0b..0023989753 100644
--- a/top/maint.mk
+++ b/top/maint.mk
@@ -1223,6 +1223,15 @@ sc_vulnerable_makefile_CVE-2009-4029:
 	  '  see http://bugzilla.redhat.com/542609 for details')	\
 	  $(_sc_search_regexp)
 
+sc_vulnerable_makefile_CVE-2012-3386:
+	@prohibit='chmod a\+w \$$\(distdir\)'				\
+	in_files=(^\|/)Makefile\\.in$$					\
+	halt=$$(printf '%s\n'						\
+	  'the above files are vulnerable; beware of running'		\
+	  '  "make distcheck", and upgrade to fixed automake'		\
+	  '  see http://bugzilla.redhat.com/CVE-2012-3386 for details')	\
+	  $(_sc_search_regexp)
+
 vc-diff-check:
 	(unset CDPATH; cd $(srcdir) && $(VC) diff) > vc-diffs || :
 	if test -s vc-diffs; then				\
author	Jim Meyering <meyering@redhat.com>	2012-07-09 16:24:00 +0200
committer	Jim Meyering <meyering@redhat.com>	2012-07-09 16:24:00 +0200
commit	48fe477c9008efadab8cf8c0c3240d824c12a8b9 (patch)
tree	7104dd73cbd348896d113e090834cf9d99c02d4c /top/maint.mk
parent	b38d59184505f6119a5ffbf3b4a068fd7a9b8fe8 (diff)
download	gnulib-48fe477c9008efadab8cf8c0c3240d824c12a8b9.tar.gz