[tex-live] README with executable bit on
Mojca Miklavec
mojca.miklavec.lists at gmail.com
Fri Apr 5 21:44:56 CEST 2013
On Fri, Apr 5, 2013 at 9:18 PM, jfbu wrote:
> Hi,
>
> I just updated TL 2012 on a Mac OS, using TeX Live Utility
> I see a small package passing by, "roundbox" and I want to
> read its documentation. Double-Clicking the README icon
> pops up a Terminal window and it appears as is some script
> was trying to run.
>
> So I go
> to see the actual file:
> /usr/local/texlive/2012/texmf-dist/doc/latex/roundbox/README
> and it has the executable bit on, although it is a perfectly
> innocent text file
>
> -rwxr-xr-x 945 Apr 4 00:39 README
>
> retrospectively isn't this a potential security problem?
I fixed it in revision 29675.
Mojca
More information about the tex-live
mailing list