https://bugzilla.novell.com/show_bug.cgi?id=872276
https://bugzilla.novell.com/show_bug.cgi?id=872276#c1
Sebastian Krahmer changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |NEEDINFO
CC| |security-team@suse.de
InfoProvider| |hrvoje.senjan@gmail.com
--- Comment #1 from Sebastian Krahmer 2014-04-15 09:29:00 UTC ---
Should not be of much problem, as its only g+s nogroup:
chgrp nogroup '\${KDESUD_PATH}' && chmod g+s '\${KDESUD_PATH}'\"
The peer-id check of the socket still seems there when
pwd caching is used. Also see here:
https://www.suse.com/support/security/advisories/2001_002_kdesu_txt.html
However it needs to be enabled during build, e.g. there must be
a string of
"socket not owned by me! socket uid ="
inside the binary. Then everything should be fine.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.