Re: [libvirt] make syntax-check: [sc_vulnerable_makefile_CVE-2009-4029] Error 1

Jim Meyering <jim(a)meyering.net&gt; wrote on 03/05/2010 11:36:59:

From: Jim Meyering <jim(a)meyering.net&gt; To: Kenneth Nagin/Haifa/IBM@IBMIL Cc: Cole Robinson <crobinso(a)redhat.com&gt;, list libvirt

Date: 03/05/2010 11:37 Subject: Re: [libvirt] make syntax-check: [sc_vulnerable_makefile_CVE-2009-4029] Error 1 Kenneth Nagin wrote: >>Cole Robinson <crobinso(a)redhat.com&gt; wrote on 30/04/2010 15:42:05: > >> From: Cole Robinson <crobinso(a)redhat.com&gt; >> To: Kenneth Nagin/Haifa/IBM@IBMIL >> Cc: "Daniel P. Berrange" <berrange(a)redhat.com&gt;, list libvirt >> <libvir-list(a)redhat.com&gt;, Daniel Veillard <veillard(a)redhat.com&gt; >> Date: 30/04/2010 15:42 >> Subject: Re: [libvirt] (Resend) Live Migration with non-shared storage > for kvm >> >> Applying the patch (to last weeks checkout), there are some > compilerwarnings: >> make sure you configure with --enable-compiler-warnings=error. 'make >> syntax-check' also fails, so please address these. > > But I get this error message when compiling with 'make syntax-check': > > 2.14 unmarked_diagnostics > vulnerable_makefile_CVE-2009-4029 > ./Makefile.in:1283: -find $(distdir) -type d ! -perm -777 -exec chmod a+rwx > {} \; -o \ > maint.mk: the above files are vulnerable; beware of running > "make dist*" rules, and upgrade to fixed automake > see http://bugzilla.redhat.com/542609 for details > make: *** [sc_vulnerable_makefile_CVE-2009-4029] Error 1 > > This problem is unrelated to any changes that I made and appearantly

> compile completes because make install works properly. > > Any suggestions on how to resolve this error message. That means you are using a version of automake that lacks the fix for the referenced bug. Upgrading to a patched version of automake, and regenerating all Makefile.in files will fix it. If you run any make rule that runs that find command, you may expose yourself to a nasty exploit.