| commit | 8b1b63e0d767f99a35e00f85014ad8778cd8c262 | |
| author | Oleg Nesterov <oleg@redhat.com> | |
| Mon, 6 Apr 2009 14:16:02 +0000 (6 16:16 +0200) | ||
| committer | Greg Kroah-Hartman <gregkh@suse.de> | |
| Fri, 8 May 2009 22:45:01 +0000 (8 15:45 -0700) | ||
| tree | a6e45afcdb1718aefdcf7dc74511deab7c6962b1 | treesnapshot (tar.gz zip) |
| parent | 68845515c8b11791b547a2838e22c27dfa3115ee | commitdiff |
exit_notify: kill the wrong capable(CAP_KILL) check (CVE-2009-1337)
CVE-2009-1337
commit 432870dab85a2f69dc417022646cb9a70acf7f94 upstream.
The CAP_KILL check in exit_notify() looks just wrong, kill it.
Whatever logic we have to reset ->exit_signal, the malicious user
can bypass it if it execs the setuid application before exiting.
Signed-off-by: Oleg Nesterov <oleg@redhat.com>
Acked-by: Serge Hallyn <serue@us.ibm.com>
Acked-by: Roland McGrath <roland@redhat.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
CVE-2009-1337
commit 432870dab85a2f69dc417022646cb9a70acf7f94 upstream.
The CAP_KILL check in exit_notify() looks just wrong, kill it.
Whatever logic we have to reset ->exit_signal, the malicious user
can bypass it if it execs the setuid application before exiting.
Signed-off-by: Oleg Nesterov <oleg@redhat.com>
Acked-by: Serge Hallyn <serue@us.ibm.com>
Acked-by: Roland McGrath <roland@redhat.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
| kernel/exit.c | diffblobblamehistory |