탐색 도움말
가입하기 로그인
XCAppCollection
/
XCVMKit-OS
2
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
브렌치: master
브랜치 태그
XCVMKit-OS
/
package
/
xinetd
/
0005-CVE-2013-4342-xinetd-ignores-user-and-group-directiv.patch

0005-CVE-2013-4342-xinetd-ignores-user-and-group-directiv.patch 1.1 KB
고유링크 히스토리 Raw

1234567891011121314151617181920212223242526272829 
  1. From 91e2401a219121eae15244a6b25d2e79c1af5864 Mon Sep 17 00:00:00 2001
    2. 

  2. From: Thomas Swan <thomas.swan@gmail.com>
    3. 

  3. Date: Wed, 2 Oct 2013 23:17:17 -0500
    4. 

  4. Subject: [PATCH] CVE-2013-4342: xinetd: ignores user and group directives for
    5. 

  5.  TCPMUX services
    6. 

  6. 

  7. Originally reported to Debian in 2005 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=324678> and rediscovered <https://bugzilla.redhat.com/show_bug.cgi?id=1006100>, xinetd would execute TCPMUX services without dropping privilege to match the service configuration allowing the service to run with same privilege as the xinetd process (root).
    8. 

  8. 

  9. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
    10. 

  10. ---
    11. 

  11.  xinetd/builtins.c | 2 +-
    12. 

  12.  1 file changed, 1 insertion(+), 1 deletion(-)
    13. 

  13. 

  14. diff --git a/xinetd/builtins.c b/xinetd/builtins.c
    15. 

  15. index 3b85579..34a5bac 100644
    16. 

  16. --- a/xinetd/builtins.c
    17. 

  17. +++ b/xinetd/builtins.c
    18. 

  18. @@ -617,7 +617,7 @@ static void tcpmux_handler( const struct server *serp )
    19. 

  19.     if( SC_IS_INTERNAL( scp ) ) {
    20. 

  20.        SC_INTERNAL(scp, nserp);
    21. 

  21.     } else {
    22. 

  22. -      exec_server(nserp);
    23. 

  23. +      child_process(nserp);
    24. 

  24.     }
    25. 

  25.  }
    26. 

  26.  
    27. 

  27. -- 
    28. 

  28. 2.20.1
    29. 

  29.