wix - A mirror of https://github.com/wixtoolset/wix.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Protect elevated working folder from malicious data	Rob Mensching	2024-03-22	1	-0/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	When running elevated, Burn uses the Windows Temp folder as its working folder to prevent normal processes from tampering with the files. Windows Temp does allow non-elevated processes to write to the folder but they cannot see the files there. Unfortunately, contrary to our belief, non-elevated processes can read the files in Windows Temp by watching for directory changes. This allows a malicious process to lie in wait, watching the Windows Temp folder until a Burn process is launched elevated, then attack the working folder. Mitigate that attack by protecting the working folder to only elevated users. Managed custom actions also fall back to using the Windows Temp folder in some cases and thus can be exposed in a similar fashion as an elevated Burn process. Remove that possibility.
*	Move the BootstrapperApplication out of proc	Rob Mensching	2024-03-06	1	-7/+1
\|
*	Add ability to skip a local path candidate if it failed verification.	Sean Hall	2022-08-03	1	-0/+5
\| \| \| \|	Fixes 6818
*	Make PathGetSystemPath return an array of paths ordered by preference.	Sean Hall	2022-06-07	1	-0/+7
\|
*	Always use user's temp directory as basis for acquisition folder.	Sean Hall	2021-08-04	1	-4/+8
\| \| \| \|	Fixes #5830
*	Replace static cache internals with a struct.	Sean Hall	2021-08-04	1	-10/+47
\| \| \| \|	Initialize them explicitly to make it clearer when that happens.
*	Reset the package's cache folder only once.	Sean Hall	2021-05-11	1	-0/+3
\| \| \| \| \| \|	This behavior makes it work similar to the root package cache folder and avoids performance problems when there are many payloads in the package. #4774
*	Allow launching approved exes from the original package cache.	Sean Hall	2021-05-11	1	-4/+3
\|
*	Move burn into burn	Rob Mensching	2021-04-29	1	-0/+216