diff options
author | Ulrich Drepper <drepper@redhat.com> | 2009-11-24 18:24:14 -0800 |
---|---|---|
committer | Ulrich Drepper <drepper@redhat.com> | 2009-11-24 18:24:14 -0800 |
commit | 139ee080b6b428240bf49f3e6361f3ac729f891a (patch) | |
tree | 6d995b56cab939c5107371e83cd5fa53fe3c3284 /ChangeLog | |
parent | fa214705b957d20621cb1190b467aa88bc9b69a3 (diff) | |
download | glibc-139ee080b6b428240bf49f3e6361f3ac729f891a.tar glibc-139ee080b6b428240bf49f3e6361f3ac729f891a.tar.gz glibc-139ee080b6b428240bf49f3e6361f3ac729f891a.tar.bz2 glibc-139ee080b6b428240bf49f3e6361f3ac729f891a.zip |
Prevent unintended file desriptor leak in grantpt.
The pt_chown program is completely transparently called. It might
not be able to live with the various file descriptors the program
has open at the time of the call (e.g., under SELinux). Close all
but the needed descriptor and connect stdin, stdout, and stderr
with /dev/null. pt_chown shouldn't print anything when called to
do real work.
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 6 |
1 files changed, 6 insertions, 0 deletions
@@ -1,5 +1,11 @@ 2009-11-24 Ulrich Drepper <drepper@redhat.com> + * sysdeps/unix/grantpt.c (grantpt): Use CLOSE_ALL_FDS is available + before the exec. + * sysdeps/unix/sysv/linux/grantpt.c: New file. + * login/programs/pt_chown.c (main): Don't print message on errors + when doing real work. + * sysdeps/unix/grantpt.c (grantpt): Only get tty group information once. |