From e9e34f5ae7ebb5ca522e1bbacb9ace70448beba3 Mon Sep 17 00:00:00 2001
From: Dennis Braun <d_braun@kabelmail.de>
Date: Wed, 26 May 2021 22:26:01 +0200
Subject: [PATCH] Sets permission rights to 700 on /var/tmp user dirs

Forwarded: yes

Fixes CVE-2020-11867

Gbp-Pq: Name 0006-Fix_CVE-2020-11867.patch
---
 src/AudacityApp.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/AudacityApp.cpp b/src/AudacityApp.cpp
index 3c29ac70..338db3f3 100644
--- a/src/AudacityApp.cpp
+++ b/src/AudacityApp.cpp
@@ -1695,7 +1695,7 @@ bool AudacityApp::InitTempDir()
    // The permissions don't always seem to be set on
    // some platforms.  Hopefully this fixes it...
    #ifdef __UNIX__
-   chmod(OSFILENAME(temp), 0755);
+   chmod(OSFILENAME(temp), 0700);
    #endif
 
    bool bSuccess = gPrefs->Write(wxT("/Directories/TempDir"), temp) && gPrefs->Flush();
-- 
2.30.2