]> git.proxmox.com Git - systemd.git/commit
projects / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5f5cf5c) | patch
chown-recursive: Rework the recursive logic to use O_PATH
authorMichael Biebl <biebl@debian.org>
Sun, 28 Oct 2018 11:56:21 +0000 (12:56 +0100)
committerMichael Biebl <biebl@debian.org>
Sun, 28 Oct 2018 11:56:21 +0000 (12:56 +0100)
commite3696255cf57ec98177b3144f6a3a0b4a8aac0a0
tree8522cdf04997fc13bc559f025079f7b7e446b36ctree
parent5f5cf5c48217d81c5f72fcc64887adc07cf074efcommit | diff
chown-recursive: Rework the recursive logic to use O_PATH

Fixes a race condition in chown_one() which allows an attacker to cause
systemd to set arbitrary permissions on arbitrary files.

CVE-2018-15687
LP: #1796692
Closes: #912007
debian/patches/chown-recursive-TAKE_FD-is-your-friend.patch [new file with mode: 0644] blob
debian/patches/chown-recursive-also-drop-ACLs-when-recursively-chown-ing.patch [new file with mode: 0644] blob
debian/patches/chown-recursive-let-s-rework-the-recursive-logic-to-use-O.patch [new file with mode: 0644] blob
debian/patches/series diff | blob | blame | history
debian/patches/test-add-test-case-for-recursive-chown-ing.patch [new file with mode: 0644] blob
systemd for Proxmox projects