Commit Graph

1 Commits (f5f3ba7ab5d5e3b0d462ed985f8b9d614f28583f)

Author SHA1 Message Date
Brian Coca 28f9fbdb5e
safely use vault to edit secrets (#68644)
* when possible, use filedescriptors from mkstemp to avoid race
  * when using path strings, ensure we are always creating the file

CVE-2020-1740
Fixes #67798

Co-authored-by: samdoran
5 years ago