exec.c: fix coredump to pipe problem and obscure "security hole" - linux-dev - Linux kernel development work

diff options

author	Alan Cox <alan@lxorguk.ukuu.org.uk>	2007-04-16 22:53:13 -0700
committer	Linus Torvalds <torvalds@woody.linux-foundation.org>	2007-04-17 16:36:26 -0700
commit	c4bbafda70a0fc95c6595bffd6825ef264050d01 (patch)
tree	92860180bea4f2e1fd515432bb165c7ae628d2af /drivers/acpi/processor_perflib.c
parent	allow vmsplice to work in 32-bit mode on ppc64 (diff)
download	linux-dev-c4bbafda70a0fc95c6595bffd6825ef264050d01.tar.xz linux-dev-c4bbafda70a0fc95c6595bffd6825ef264050d01.zip

exec.c: fix coredump to pipe problem and obscure "security hole"

The patch checks for "|" in the pattern not the output and doesn't nail a pid on to a piped name (as it is a program name not a file) Also fixes a very very obscure security corner case. If you happen to have decided on a core pattern that starts with the program name then the user can run a program called "|myevilhack" as it stands. I doubt anyone does this. Signed-off-by: Alan Cox <alan@redhat.com> Confirmed-by: Christopher S. Aker <caker@theshore.net> Cc: <stable@kernel.org> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

Diffstat (limited to 'drivers/acpi/processor_perflib.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: