Mailinglist Archive: opensuse (1352 mails)

< Previous Next >
Re: [opensuse] Problem with suid pgms on Leap-15.0
03.06.2018 09:34, Richard Brown пишет:
On 3 June 2018 at 08:27, Andrei Borzenkov <arvidjaar@xxxxxxxxx> wrote:
03.06.2018 09:08, Richard Brown пишет:
On 2 June 2018 at 13:56, Andrei Borzenkov <arvidjaar@xxxxxxxxx> wrote:

OK, so what? The "real" group id is users(100). That's what happens.
What does that have to do with group membership of the user being lost?


This appears to be local SUSE patch which additionally resets
supplementary groups. There is not much info in changelog and OBS is not
entirely helpful in browsing historical versions either, but for all I
can tell patch is quite old. Behavior is present in Leap 42.3 already.

Link to the patch please?


https://bugzilla.opensuse.org/show_bug.cgi?id=1095670

Can you reference the exact lines in the .dif which you believe are
causing this issue?



@@ -1277,6 +1278,7 @@ disable_priv_mode ()
{
int e;

+ setgroups(0, NULL);
if (setuid (current_user.uid) < 0)
{
e = errno;


Because that file in general has been in the openSUSE bash package
since before a time OBS existed and reading the changelog might even
go back as far as the first versions of bash in the earliest SUSE
linux versions, with patches pulled from upstream and usenet

Kinda hard to do such software archaeology in abstract but if you
could help point out some exact lines, maybe I can help figure out how
they got there



--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >
Follow Ups