It is only necessary to swap the effective gid when reading a file. - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	millert <millert@openbsd.org>	2015-11-03 16:28:43 +0000
committer	millert <millert@openbsd.org>	2015-11-03 16:28:43 +0000
commit	cb041b34e4c9c9b1d5709b10da2cbc60b98709a2 (patch)
tree	299958253486aa65f10b4e8b60169f8050f6f3c0 /lib
parent	There really is no double standard. Treat m4 just like openssl, by (diff)
download	wireguard-openbsd-cb041b34e4c9c9b1d5709b10da2cbc60b98709a2.tar.xz wireguard-openbsd-cb041b34e4c9c9b1d5709b10da2cbc60b98709a2.zip

It is only necessary to swap the effective gid when reading a file.

An attacker exploiting an overflow can change the egid themselves so running with the egid of the user in other places just gives you a false sense of security. OK nicm@ deraadt@

Diffstat (limited to 'lib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: