AcoSail/kernel_optimize_test
8
0
Fork 0
forked from luck/tmp_suning_uos_patched
Code Pull Requests Activity
6249033076
kernel_optimize_test/fs/orangefs
History
Jan Kara 073931017b posix_acl: Clear SGID bit when setting file permissions 
When file permissions are modified via chmod(2) and the user is not in
the owning group or capable of CAP_FSETID, the setgid bit is cleared in
inode_change_ok().  Setting a POSIX ACL via setxattr(2) sets the file
permissions as well as the new ACL, but doesn't clear the setgid bit in
a similar way; this allows to bypass the check in chmod(2).  Fix that.

References: CVE-2016-7097
Reviewed-by: Christoph Hellwig <hch@lst.de>
Reviewed-by: Jeff Layton <jlayton@redhat.com>
Signed-off-by: Jan Kara <jack@suse.cz>
Signed-off-by: Andreas Gruenbacher <agruenba@redhat.com>
2016-09-22 10:55:32 +02:00
..
acl.c posix_acl: Clear SGID bit when setting file permissions 2016-09-22 10:55:32 +02:00
dcache.c orangefs: Account for jiffies wraparound. 2016-08-02 15:39:13 -04:00
devorangefs-req.c
dir.c
downcall.h
file.c
inode.c orangefs: Cache getattr results. 2016-08-02 15:38:45 -04:00
Kconfig
Makefile
namei.c orangefs: Account for jiffies wraparound. 2016-08-02 15:39:13 -04:00
orangefs-bufmap.c
orangefs-bufmap.h
orangefs-cache.c
orangefs-debug.h
orangefs-debugfs.c
orangefs-debugfs.h
orangefs-dev-proto.h
orangefs-kernel.h orangefs: Allow dcache and getattr cache time to be configured. 2016-08-02 15:38:46 -04:00
orangefs-mod.c orangefs: Change default dcache and getattr timeout to 50 msec. 2016-08-02 15:38:47 -04:00
orangefs-sysfs.c orangefs: Allow dcache and getattr cache time to be configured. 2016-08-02 15:38:46 -04:00
orangefs-sysfs.h
orangefs-utils.c orangefs: Account for jiffies wraparound. 2016-08-02 15:39:13 -04:00
protocol.h orangefs: Cache getattr results. 2016-08-02 15:38:45 -04:00
super.c
symlink.c
upcall.h
waitqueue.c
xattr.c