Site Navigation

Date:      Wed, 17 Mar 2004 05:19:43 -0800 (PST)
From:      Pawel Jakub Dawidek <pjd@FreeBSD.org>
To:        src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org
Subject:   cvs commit: src/sys/kern kern_proc.c
Message-ID:  <200403171319.i2HDJihF089490@repoman.freebsd.org>

---

next in thread | raw e-mail | index | archive | help

---

pjd         2004/03/17 05:19:43 PST

  FreeBSD src repository

  Modified files:
    sys/kern             kern_proc.c 
  Log:
  Fix information leakage.
  Without this fix it is possible to cheat policies like:
  - sysctl security.bsd.see_other_[gu]ids=0,
  - mac_seeotheruids(4),
  - jail(2)
  and get full processes list with their arguments.
  
  This problem exists from revision 1.62 of kern_proc.c when it was
  introduced.
  
  Reviewed by:    nectar, rwatson.
  
  Revision  Changes    Path
  1.200     +6 -1      src/sys/kern/kern_proc.c

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200403171319.i2HDJihF089490>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact