fa1950198b
Move the default dump location to /var/spool/abrt from /var/tmp/abrt and Use root for owner of all dump directories Fixes for CVE-2015-3315, CVE-2015-3142, CVE-2015-1869, CVE-2015-1870 Fixes for CVE-2015-3147, CVE-2015-3151, CVE-2015-3150, CVE-2015-3159 Resolves: #1179752 Signed-off-by: Matej Habrnal <mhabrnal@redhat.com>
31 lines
1 KiB
Diff
31 lines
1 KiB
Diff
From a691dd91f561bb32367ecab510930767871137c6 Mon Sep 17 00:00:00 2001
|
|
From: Jakub Filak <jfilak@redhat.com>
|
|
Date: Wed, 15 Apr 2015 17:42:59 +0200
|
|
Subject: [PATCH] ccpp: create dump directory without parents
|
|
|
|
This patch makes the code more robust.
|
|
This patch ensures that abrt-hook-ccpp never creates the dump location.
|
|
|
|
Related: #1211835
|
|
|
|
Signed-off-by: Jakub Filak <jfilak@redhat.com>
|
|
---
|
|
src/hooks/abrt-hook-ccpp.c | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/src/hooks/abrt-hook-ccpp.c b/src/hooks/abrt-hook-ccpp.c
|
|
index 04889da..f77a23f 100644
|
|
--- a/src/hooks/abrt-hook-ccpp.c
|
|
+++ b/src/hooks/abrt-hook-ccpp.c
|
|
@@ -603,7 +603,7 @@ int main(int argc, char** argv)
|
|
* the current user, hence, we have to call dd_reset_ownership() after the
|
|
* directory is populated.
|
|
*/
|
|
- dd = dd_create_skeleton(path, fsuid, DEFAULT_DUMP_DIR_MODE);
|
|
+ dd = dd_create_skeleton(path, fsuid, DEFAULT_DUMP_DIR_MODE, /*no flags*/0);
|
|
if (dd)
|
|
{
|
|
char *rootdir = get_rootdir(pid);
|
|
--
|
|
2.1.0
|
|
|