emo/shadow
1
0
Fork 0
Code Issues Pull Requests Packages Releases Activity
shadow/src
History
Tobias Stoeckmann 7d82f203ee Reset pid_child only if waitpid was successful. 
Do not reset the pid_child to 0 if the child process is still
running. This else-condition can be reached with pid being -1,
therefore explicitly test this condition.

This is a regression fix for CVE-2017-2616. If su receives a
signal like SIGTERM, it is not propagated to the child.

Reported-by: Radu Duta <raduduta@gmail.com>
Signed-off-by: Tobias Stoeckmann <tobias@stoeckmann.org>
2017-05-14 17:58:10 +02:00
..
.gitignore
.indent.pro
chage.c
chfn.c
chgpasswd.c
chpasswd.c
Make the sp_lstchg shadow field reproducible.
2017-04-10 22:29:21 +01:00
chsh.c
expiry.c
Fixed signal races in shadow tools.
2016-07-02 18:11:09 +02:00
faillog.c
gpasswd.c
Fixed signal races in shadow tools.
2016-07-02 18:11:09 +02:00
groupadd.c
groupdel.c
Merge pull request #4 from xnox/master
2015-11-12 23:07:29 -06:00
groupmems.c
groupmod.c
groups.c
grpck.c
grpconv.c
grpunconv.c
id.c
lastlog.c
Add ability to clear or set lastlog record for user via lastlog command
2016-03-03 15:37:01 +01:00
login_nopam.c
login.c
Fixed signal races in shadow tools.
2016-07-02 18:11:09 +02:00
logoutd.c
Makefile.am
shadow: Add auditing support to su
2016-12-13 18:44:19 +02:00
newgidmap.c
Fixed typos in new{g,u}idmap tools.
2016-07-02 16:39:18 +02:00
newgrp.c
newuidmap.c
Fixed typos in new{g,u}idmap tools.
2016-07-02 16:39:18 +02:00
newusers.c
Make the sp_lstchg shadow field reproducible.
2017-04-10 22:29:21 +01:00
nologin.c
passwd.c
Make the sp_lstchg shadow field reproducible.
2017-04-10 22:29:21 +01:00
pwck.c
pwconv.c
pwunconv.c
su.c
Reset pid_child only if waitpid was successful.
2017-05-14 17:58:10 +02:00
suauth.c
sulogin.c
Fixed signal races in shadow tools.
2016-07-02 18:11:09 +02:00
useradd.c
Make the sp_lstchg shadow field reproducible.
2017-04-10 22:29:21 +01:00
userdel.c
usermod.c
Make the sp_lstchg shadow field reproducible.
2017-04-10 22:29:21 +01:00
vipw.c