fa1950198b
Move the default dump location to /var/spool/abrt from /var/tmp/abrt and Use root for owner of all dump directories Fixes for CVE-2015-3315, CVE-2015-3142, CVE-2015-1869, CVE-2015-1870 Fixes for CVE-2015-3147, CVE-2015-3151, CVE-2015-3150, CVE-2015-3159 Resolves: #1179752 Signed-off-by: Matej Habrnal <mhabrnal@redhat.com>
39 lines
1.1 KiB
Diff
39 lines
1.1 KiB
Diff
From 1d09c7271eae9aee2fae62367c9a83b30a685c69 Mon Sep 17 00:00:00 2001
|
|
From: Jakub Filak <jfilak@redhat.com>
|
|
Date: Tue, 28 Apr 2015 14:00:18 +0200
|
|
Subject: [PATCH] ccpp: stop reading hs_error.log from /tmp
|
|
|
|
The file might contain anything and there is no way to verify its
|
|
contents.
|
|
|
|
Related: #1211835
|
|
|
|
Signed-off-by: Jakub Filak <jfilak@redhat.com>
|
|
---
|
|
src/hooks/abrt-hook-ccpp.c | 3 +++
|
|
1 file changed, 3 insertions(+)
|
|
|
|
diff --git a/src/hooks/abrt-hook-ccpp.c b/src/hooks/abrt-hook-ccpp.c
|
|
index 218abac..880daf6 100644
|
|
--- a/src/hooks/abrt-hook-ccpp.c
|
|
+++ b/src/hooks/abrt-hook-ccpp.c
|
|
@@ -741,6 +741,8 @@ int main(int argc, char** argv)
|
|
* ! No other errors should cause removal of the user core !
|
|
*/
|
|
|
|
+/* Because of #1211835 and #1126850 */
|
|
+#if 0
|
|
/* Save JVM crash log if it exists. (JVM's coredump per se
|
|
* is nearly useless for JVM developers)
|
|
*/
|
|
@@ -774,6 +776,7 @@ int main(int argc, char** argv)
|
|
close(src_fd);
|
|
}
|
|
}
|
|
+#endif
|
|
|
|
/* Perform crash-time unwind of the guilty thread. */
|
|
if (tid > 0 && setting_CreateCoreBacktrace)
|
|
--
|
|
2.1.0
|
|
|