diff options
author | Colin Walters <walters@verbum.org> | 2013-08-22 13:55:21 -0400 |
---|---|---|
committer | Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> | 2013-09-18 11:06:04 -0500 |
commit | 72fd713962ca2c2450e23b01d9e22017a7e28fd4 (patch) | |
tree | 81549ab1c80eb0bfff2ee15aa1fa5cd3d1a0cd41 /NEWS | |
parent | 00f117a59973f9c4e1a966252d668949f62a9265 (diff) |
polkit: Avoid race condition in scraping /proc
If a calling process execve()s a setuid program, it can appear to be
uid 0. Since we're receiving requests over DBus, avoid this by simply
passing system-bus-name as a subject.
Diffstat (limited to 'NEWS')
0 files changed, 0 insertions, 0 deletions