Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / c4bbafda70a0fc95c6595bffd6825ef264050d01
commitc4bbafda70a0fc95c6595bffd6825ef264050d01[log] [tgz]
authorAlan Cox <alan@lxorguk.ukuu.org.uk>Mon Apr 16 22:53:13 2007 -0700
committerLinus Torvalds <torvalds@woody.linux-foundation.org>Tue Apr 17 16:36:26 2007 -0700
tree92860180bea4f2e1fd515432bb165c7ae628d2af
parentc4b7e8754e3198eb5392568e523da6440143c2cd [diff]
exec.c: fix coredump to pipe problem and obscure "security hole"

The patch checks for "|" in the pattern not the output and doesn't nail a
pid on to a piped name (as it is a program name not a file)

Also fixes a very very obscure security corner case.  If you happen to have
decided on a core pattern that starts with the program name then the user
can run a program called "|myevilhack" as it stands.  I doubt anyone does
this.

Signed-off-by: Alan Cox <alan@redhat.com>
Confirmed-by: Christopher S. Aker <caker@theshore.net>
Cc: <stable@kernel.org>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
1 file changed
tree: 92860180bea4f2e1fd515432bb165c7ae628d2af
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. fs/
  7. include/
  8. init/
  9. ipc/
  10. kernel/
  11. lib/
  12. mm/
  13. net/
  14. scripts/
  15. security/
  16. sound/
  17. usr/
  18. .gitignore
  19. .mailmap
  20. COPYING
  21. CREDITS
  22. Kbuild
  23. MAINTAINERS
  24. Makefile
  25. README
  26. REPORTING-BUGS