Skip to content

Commit

Permalink
---
Browse files Browse the repository at this point in the history 
yaml
---
r: 299325
b: refs/heads/master
c: d52fc5d
h: refs/heads/master
i:
  299323: 96d3519
v: v3
  • Loading branch information
Eric Paris authored and James Morris committed Apr 18, 2012
1 parent 80a5a2e commit dfc138c
Show file tree
Hide file tree
Showing 2 changed files with 6 additions and 1 deletion.
2 changes: 1 addition & 1 deletion [refs]
View file
Original file line number Diff line number Diff line change
@@ -1,2 +1,2 @@
---
refs/heads/master: 09c79b60960bdd4b00916219402eabfa5e479c5a
refs/heads/master: d52fc5dde171f030170a6cb78034d166b13c9445
5 changes: 5 additions & 0 deletions trunk/security/commoncap.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -505,6 +505,11 @@ int cap_bprm_set_creds(struct linux_binprm *bprm)
}
skip:

/* if we have fs caps, clear dangerous personality flags */
if (!cap_issubset(new->cap_permitted, old->cap_permitted))
bprm->per_clear |= PER_CLEAR_ON_SETID;


/* Don't let someone trace a set[ug]id/setpcap binary with the revised
* credentials unless they have the appropriate permit
*/
Expand Down

0 comments on commit dfc138c

Please sign in to comment.