27 lines
770 B
Diff
27 lines
770 B
Diff
|
From d14e6b09d60d52cc12f0396c3106b14e1bd0fe8f Mon Sep 17 00:00:00 2001
|
||
|
From: Andreas Schwab <schwab@redhat.com>
|
||
|
Date: Thu, 9 Dec 2010 15:00:59 +0100
|
||
|
Subject: [PATCH 1/1] Ignore origin of privileged program
|
||
|
|
||
|
---
|
||
|
ChangeLog | 5 +++++
|
||
|
elf/dl-object.c | 3 +++
|
||
|
2 files changed, 8 insertions(+), 0 deletions(-)
|
||
|
|
||
|
diff --git a/elf/dl-object.c b/elf/dl-object.c
|
||
|
index 22a1635..7674d49 100644
|
||
|
--- elf/dl-object.c.orig
|
||
|
+++ elf/dl-object.c
|
||
|
@@ -214,6 +214,9 @@ _dl_new_object (char *realname, const char *libname, int type,
|
||
|
out:
|
||
|
new->l_origin = origin;
|
||
|
}
|
||
|
+ else if (INTUSE(__libc_enable_secure) && type == lt_executable)
|
||
|
+ /* The origin of a privileged program cannot be trusted. */
|
||
|
+ new->l_origin = (char *) -1;
|
||
|
|
||
|
return new;
|
||
|
}
|
||
|
--
|
||
|
1.7.2
|