diff options
author | Chris Wright <chrisw@sous-sol.org> | 2006-03-25 12:07:41 +0100 |
---|---|---|
committer | Linus Torvalds <torvalds@g5.osdl.org> | 2006-03-25 17:22:56 +0100 |
commit | d4eb82c783992551c574580eb55fddc8bb006ad0 (patch) | |
tree | 912aa24f162342bffae86a0c3e4713700a9e5c66 /fs/minix | |
parent | [PATCH] refactor capable() to one implementation, add __capable() helper (diff) | |
download | linux-d4eb82c783992551c574580eb55fddc8bb006ad0.tar.xz linux-d4eb82c783992551c574580eb55fddc8bb006ad0.zip |
[PATCH] make cap_ptrace enforce PTRACE_TRACME checks
PTRACE_TRACEME doesn't have proper capabilities validation when parent is
less privileged than child. Issue pointed out by Ram Gupta
<ram.gupta5@gmail.com>.
Note: I haven't identified a strong security issue, and it's a small ABI
change that could break apps that rely on existing behaviour (which allows
parent that is less privileged than child to ptrace when child does
PTRACE_TRACEME).
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
Cc: Ram Gupta <ram.gupta5@gmail.com>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Diffstat (limited to 'fs/minix')
0 files changed, 0 insertions, 0 deletions