]> git.ipfire.org Git - thirdparty/util-linux.git/commit
projects / thirdparty / util-linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d985dfe) | patch
login-utils/su-common: Check that the user didn't change during PAM transaction
authorMarco Trevisan (Treviño) <mail@3v1n0.net>
Fri, 20 Sep 2024 15:23:16 +0000 (17:23 +0200)
committerMarco Trevisan (Treviño) <mail@3v1n0.net>
Fri, 20 Sep 2024 15:23:16 +0000 (17:23 +0200)
commitd6564701e81254064ace56b57e6090620ed29d28
tree3f21109b68934b1135a65a379fb168993193f7c7tree | snapshot
parentd985dfec9275945aa24f0603cc61faac556ae855commit | diff
login-utils/su-common: Check that the user didn't change during PAM transaction

PAM modules can change the user during their execution, in such case su
would still use the user that has been provided giving potentially
access to another user with the credentials of another one.

So prevent this to happen, by ensuring that the final PAM user is
matching the one required
login-utils/su-common.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.