]> granicus.if.org Git - sudo/commit
projects / sudo / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f85280d) | patch
Fix for CVE-2017-1000367, parsing of /proc/pid/stat on Linux when
authorTodd C. Miller <Todd.Miller@courtesan.com>
Mon, 29 May 2017 20:32:53 +0000 (14:32 -0600)
committerTodd C. Miller <Todd.Miller@courtesan.com>
Mon, 29 May 2017 20:32:53 +0000 (14:32 -0600)
commit817fd283124c61e8d5c8243b9ba276ba37ed87fe
tree4be7f383b7fe185997e2277358251361f8a33108tree | snapshot
parentf85280d98165171ec7265d2dcb2af69f831e85d4commit | diff
Fix for CVE-2017-1000367, parsing of /proc/pid/stat on Linux when
the process name contains spaces.  Since the user has control over
the command name this could be used by a user with sudo access to
overwrite an arbitrary file.
Thanks to Qualys for investigating and reporting this bug.

Also stop performing a breadth-first traversal of /dev when looking
for the device.  Only the directories specified in search_devs[]
are checked.

--HG--
branch : 1.8
src/ttyname.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.