From owner-cvs-all Tue Jul 30 8:38:36 2002 Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9151937B400; Tue, 30 Jul 2002 08:38:30 -0700 (PDT) Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3B58043E3B; Tue, 30 Jul 2002 08:38:30 -0700 (PDT) (envelope-from nectar@FreeBSD.org) Received: from freefall.freebsd.org (nectar@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.4/8.12.4) with ESMTP id g6UFcTJU099527; Tue, 30 Jul 2002 08:38:30 -0700 (PDT) (envelope-from nectar@freefall.freebsd.org) Received: (from nectar@localhost) by freefall.freebsd.org (8.12.4/8.12.4/Submit) id g6UFcT6v099526; Tue, 30 Jul 2002 08:38:29 -0700 (PDT) Message-Id: <200207301538.g6UFcT6v099526@freefall.freebsd.org> From: Jacques Vidrine Date: Tue, 30 Jul 2002 08:38:29 -0700 (PDT) To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/kern kern_exec.c X-FreeBSD-CVS-Branch: HEAD Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG nectar 2002/07/30 08:38:29 PDT Modified files: sys/kern kern_exec.c Log: For processes which are set-user-ID or set-group-ID, the kernel performs a few special actions for safety. One of these is to make sure that file descriptors 0..2 are in use, by opening /dev/null for those that are not already open. Another is to close any file descriptors 0..2 that reference procfs. However, these checks were made out of order, so that it was still possible for a set-user-ID or set-group-ID process to be started with some of the file descriptors 0..2 unused. Submitted by: Georgi Guninski Revision Changes Path 1.178 +2 -1 src/sys/kern/kern_exec.c To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message