Commit c46f739d authored by Ingo Molnar's avatar Ingo Molnar Committed by Linus Torvalds

vfs: coredumping fix

fix: http://bugzilla.kernel.org/show_bug.cgi?id=3043

only allow coredumping to the same uid that the coredumping
task runs under.
Signed-off-by: default avatarIngo Molnar <mingo@elte.hu>
Acked-by: default avatarAlan Cox <alan@redhat.com>
Acked-by: default avatarChristoph Hellwig <hch@lst.de>
Acked-by: default avatarAl Viro <viro@ftp.linux.org.uk>
Signed-off-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
parent a531a141
...@@ -1780,6 +1780,12 @@ int do_coredump(long signr, int exit_code, struct pt_regs * regs) ...@@ -1780,6 +1780,12 @@ int do_coredump(long signr, int exit_code, struct pt_regs * regs)
but keep the previous behaviour for now. */ but keep the previous behaviour for now. */
if (!ispipe && !S_ISREG(inode->i_mode)) if (!ispipe && !S_ISREG(inode->i_mode))
goto close_fail; goto close_fail;
/*
* Dont allow local users get cute and trick others to coredump
* into their pre-created files:
*/
if (inode->i_uid != current->fsuid)
goto close_fail;
if (!file->f_op) if (!file->f_op)
goto close_fail; goto close_fail;
if (!file->f_op->write) if (!file->f_op->write)
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment