This is the mail archive of the
libc-alpha@sourceware.org
mailing list for the glibc project.
Re: [PATCH] BZ #15755: CVE-2013-2207: pt_chown tricked into granting access to another users pseudo-terminal
- From: "Carlos O'Donell" <carlos at redhat dot com>
- To: GNU C Library <libc-alpha at sourceware dot org>, David Miller <davem at davemloft dot net>, Roland McGrath <roland at hack dot frob dot com>, Andreas Schwab <schwab at suse dot de>, Andreas Jaeger <aj at suse dot com>, "Joseph S. Myers" <joseph at codesourcery dot com>, Ryan Arnold <rsa at us dot ibm dot com>, Alexandre Oliva <aoliva at redhat dot com>, Siddhesh Poyarekar <siddhesh at redhat dot com>
- Date: Fri, 19 Jul 2013 02:00:34 -0400
- Subject: Re: [PATCH] BZ #15755: CVE-2013-2207: pt_chown tricked into granting access to another users pseudo-terminal
- References: <51E8D4C1 dot 9000705 at redhat dot com>
On 07/19/2013 01:55 AM, Carlos O'Donell wrote:
> 2013-07-19 Siddhesh Poyarekar <siddhesh@redhat.com>
> Andreas Schwab <schwab@suse.de>
> Roland McGrath <roland@hack.frob.com>
> Joseph Myers <joseph@codesourcery.com>
> Carlos O'Donell <carlos@redhat.com>
[BZ #15755]
> * config.h.in: Define HAVE_PT_CHOWN.
> * config.make.in (build-pt-chown): New variable.
> * configure.in (--enable-pt_chown): New configure option.
> * configure: Regenerate.
> * login/Makefile: Include Makeconfig. Build pt_chown only if
> build-pt-chown is enabled.
> * sysdeps/unix/grantpt.c (grantpt) [HAVE_PT_CHOWN]: Spawn
> pt_chown to fix pty ownership.
> * sysdeps/unix/sysv/linux/grantpt.c [HAVE_PT_CHOWN]: Define
> CLOSE_ALL_FDS.
> * manual/install.texi (Configuring and compiling): Mention
> --enable-pt_chown. Add @findex for grantpt.
> * INSTALL: Regenerate.
Added missing BZ # to ChangeLog.
Cheers,
Carlos.