[Bug 1182] uid 0, gid !=0 fools defensive check in uidswap.c
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Mon Apr 17 22:59:35 EST 2006
http://bugzilla.mindrot.org/show_bug.cgi?id=1182
dtucker at zip.com.au changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |FIXED
------- Comment #1 from dtucker at zip.com.au 2006-04-17 22:59 -------
Thanks, but this was fixed in 4.0p1, which had this change (uidswap.c rev
1.45):
- if (old_gid != pw->pw_gid &&
+ if (old_gid != pw->pw_gid && pw->pw_uid != 0 &&
Emulating your falure case ("su - root; newgrp foo") works ok.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the openssh-bugs
mailing list