Startsida Utforska Hjälp
Registrera dig Logga in
phyus
/
linux-vybrid_public
8
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Bläddra i källkod

Fix nasty /proc vulnerability

We have a bad interaction with both the kernel and user space being able
to change some of the /proc file status.  This fixes the most obvious
part of it, but I expect we'll also make it harder for users to modify
even their "own" files in /proc.

Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Linus Torvalds 19 år sedan
förälder
ab6cf0d0cb
incheckning
18b0bbd8ca
1 ändrade filer med 1 tillägg och 0 borttagningar
Unifierad Vy Visa Diff Statistik
  1. 1 0
      fs/proc/base.c

+ 1 - 0
fs/proc/base.c
Visa fil 

@@ -1338,6 +1338,7 @@ static int pid_revalidate(struct dentry *dentry, struct nameidata *nd)
 
 		} else {
 
 		} else {
 
 			inode->i_uid = 0;
 
 			inode->i_uid = 0;
 
 			inode->i_gid = 0;
 
 			inode->i_gid = 0;
 
+			inode->i_mode = 0;
 
 		}
 
 		}
 
 		security_task_to_inode(task, inode);
 
 		security_task_to_inode(task, inode);
 
 		put_task_struct(task);
 
 		put_task_struct(task);