[Bug 1182] uid 0, gid !=0 fools defensive check in uidswap.c
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Wed Apr 12 06:57:05 EST 2006
http://bugzilla.mindrot.org/show_bug.cgi?id=1182
Summary: uid 0, gid !=0 fools defensive check in uidswap.c
Product: Portable OpenSSH
Version: 3.7.1p1
Platform: All
OS/Version: Linux
Status: NEW
Severity: minor
Priority: P4
Component: ssh
AssignedTo: bitbucket at mindrot.org
ReportedBy: csmith at stoneboro.uucp.cirr.com
I no longer have a test setup to check if this is still broken -- sorry -- but
I thought you'd like to know about it anyway.
If your uid is 0, the code in permanently_set_uid() to check if its setresgid
worked properly is fooled.
see bugs.gentoo.org #77915 comments 5, 6, 7.
Thanks for openssh.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the openssh-bugs
mailing list