https://bugzilla.novell.com/show_bug.cgi?id=794084 https://bugzilla.novell.com/show_bug.cgi?id=794084#c11 Thomas Biege <thomas@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW InfoProvider|security-team@suse.de | --- Comment #11 from Thomas Biege <thomas@suse.com> 2012-12-14 15:42:29 CET --- (In reply to comment #5)
What is the security team stance?
- used a safe set of $PATH /bin:/usr/bin:/sbin:/usr/sbin - do not use the $PATH inherited from the caller (problematic with setuid, and AFAIR su/sudo) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.