Summary: | sys-process/at-3.1.10.2-r1[pam] tries accessing /etc/shadow after dropping root privileges | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Tero Pelander <tpeland> |
Component: | Current packages | Assignee: | Zoltan Puskas <zoltan> |
Status: | CONFIRMED --- | ||
Severity: | normal | CC: | barzog, cron-bugs+disabled, gentoobugs, mgorny, pam-bugs+disabled, proxy-maint |
Priority: | High | ||
Version: | 2008.0 | ||
Hardware: | x86 | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Tero Pelander
2009-04-26 05:30:31 UTC
Please don't CC maintainers/herds yourself. Leave that to the bug-wranglers. *** This bug has been marked as a duplicate of bug 267438 *** Lars, okay for the CC (somewhat) but if you read the bug you duped this against, I explicitly asked for this one! pam team can modify the pam.d file however it sees fit (In reply to comment #2) > Lars, okay for the CC (somewhat) but if you read the bug you duped this > against, I explicitly asked for this one! Sorry for that. I was in a rush when I wrangled this bug. This is a bug in at, not in PAM, it shouldn't drop root before calling pam_start… at a minimum it should save the DAC_OVERRIDE cap before doing that. |