Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 35037 Details for
Bug 56479
sys-kernel/*: fchown may allow unrestricted file groupIDs modifications
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Patch for 2.6 attr exploit
2.6-attr_exploit.patch (text/plain), 846 bytes, created by
Chris White (RETIRED)
on 2004-07-08 17:12:32 UTC
(
hide
)
Description:
Patch for 2.6 attr exploit
Filename:
MIME Type:
Creator:
Chris White (RETIRED)
Created:
2004-07-08 17:12:32 UTC
Size:
846 bytes
patch
obsolete
># This is a BitKeeper generated diff -Nru style patch. ># ># ChangeSet ># 2004/07/02 20:55:04-07:00 chrisw@osdl.org ># [PATCH] chown permission check fix for ATTR_GID ># ># SuSE discovered this problem with chown and ATTR_GID. Make sure user ># is authorized to change the group, CAN-2004-0497. ># ># fs/attr.c ># 2004/07/02 09:07:32-07:00 chrisw@osdl.org +2 -1 ># chown permission check fix for ATTR_GID ># >diff -Nru a/fs/attr.c b/fs/attr.c >--- a/fs/attr.c 2004-07-08 16:35:57 -07:00 >+++ b/fs/attr.c 2004-07-08 16:35:57 -07:00 >@@ -35,7 +35,8 @@ > > /* Make sure caller can chgrp. */ > if ((ia_valid & ATTR_GID) && >- (!in_group_p(attr->ia_gid) && attr->ia_gid != inode->i_gid) && >+ (current->fsuid != inode->i_uid || >+ (!in_group_p(attr->ia_gid) && attr->ia_gid != inode->i_gid)) && > !capable(CAP_CHOWN)) > goto error; >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=35037">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 56479
: 35037 |
35038
|
35039
|
35040
