1
0
mirror of https://git.FreeBSD.org/ports.git synced 2025-01-07 06:40:06 +00:00

Fix a security bug in the rscsi client code.

Approved by:	netchild
Obtained from:	cdrtools 2.01a38
This commit is contained in:
Marius Strobl 2004-08-29 14:40:24 +00:00
parent feaac6c630
commit 734d8e8e0d
Notes: svn2git 2021-03-31 03:12:20 +00:00
svn path=/head/; revision=117571
2 changed files with 17 additions and 1 deletions

View File

@ -7,7 +7,7 @@
PORTNAME= cdrtools
PORTVERSION?= 2.0.3
PORTREVISION?= 3
PORTREVISION?= 4
CATEGORIES?= sysutils audio
MASTER_SITES= ftp://ftp.berlios.de/pub/cdrecord/ \
ftp://ftp.cs.tu-berlin.de/pub/misc/cdrecord/ \

View File

@ -0,0 +1,16 @@
--- librscg/scsi-remote.c.orig Thu Jan 15 01:25:09 2004
+++ librscg/scsi-remote.c Tue Aug 24 00:11:42 2004
@@ -1074,6 +1074,13 @@
if (getuid() != pw->pw_uid &&
setuid(pw->pw_uid) == -1) {
errmsg("setuid(%lld) failed.\n",
+ (Llong)pw->pw_uid);
+ _exit(EX_BAD);
+ /* NOTREACHED */
+ }
+ if (getuid() != geteuid() &&
+ seteuid(pw->pw_uid) == -1) {
+ errmsg("seteuid(%lld) failed.\n",
(Llong)pw->pw_uid);
_exit(EX_BAD);
/* NOTREACHED */