]> git.ipfire.org Git - thirdparty/util-linux.git/commit
projects / thirdparty / util-linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2dd3ba2) | patch
swapon: do not run execvp() calls when swapon is setuid binary
authorSami Kerola <kerolasa@iki.fi>
Tue, 2 Feb 2016 13:40:10 +0000 (13:40 +0000)
committerKarel Zak <kzak@redhat.com>
Thu, 11 Feb 2016 09:52:18 +0000 (10:52 +0100)
commit8843aa41a74b4d3b3dc69fee339d2e64cb5c778f
treec8329ac23296c2f028840ed36aa87ad20cc74a0ctree | snapshot
parent2dd3ba2c8566e41fc8532df35b3b5f942c37377ccommit | diff
swapon: do not run execvp() calls when swapon is setuid binary

swapon(8) is not expected to be setuid binary, but if it is try to avoid
obvious security vulnerability of executing user preferred mkswap file as
someone else, such as root.

Signed-off-by: Sami Kerola <kerolasa@iki.fi>
sys-utils/swapon.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.