Hello Evan Peck. Thanks for your attachment and the script to fix this. Unfortunately it contains lines like:
sudo chmod a=rwx $pathusc
that will give all users write permissions to the application, this would potentially allow a malicious non-admin user on the system to add trojan code to software-center to steal e.g. authentication keys for purchases. This is why I deleted the attachment.
If you have more insight in the bug itself I would love to talk what we can do to fix this in a way that does not involve chmod a=rwx.
Hello Evan Peck. Thanks for your attachment and the script to fix this. Unfortunately it contains lines like:
sudo chmod a=rwx $pathusc
that will give all users write permissions to the application, this would potentially allow a malicious non-admin user on the system to add trojan code to software-center to steal e.g. authentication keys for purchases. This is why I deleted the attachment.
If you have more insight in the bug itself I would love to talk what we can do to fix this in a way that does not involve chmod a=rwx.