Date: Tue, 30 Jul 2002 08:38:29 -0700 (PDT) From: Jacques Vidrine <nectar@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/kern kern_exec.c Message-ID: <200207301538.g6UFcT6v099526@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
nectar 2002/07/30 08:38:29 PDT
Modified files:
sys/kern kern_exec.c
Log:
For processes which are set-user-ID or set-group-ID, the kernel performs a few
special actions for safety. One of these is to make sure that file descriptors
0..2 are in use, by opening /dev/null for those that are not already open.
Another is to close any file descriptors 0..2 that reference procfs. However,
these checks were made out of order, so that it was still possible for a
set-user-ID or set-group-ID process to be started with some of the file
descriptors 0..2 unused.
Submitted by: Georgi Guninski <guninski@guninski.com>
Revision Changes Path
1.178 +2 -1 src/sys/kern/kern_exec.c
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200207301538.g6UFcT6v099526>