Drop man priveledges before popen and restore them after it, because

it is possible to execute system command from f.e groff Should be in 2.2
svn path=/head/; revision=20654
1996-12-18 19:46:21 +00:00 · 1996-12-18 19:46:21 +00:00 · 64919fdd33 · 2020-12-20 02:59:44 +00:00
commit 64919fdd33
parent 8b1f0fa595
1 changed files with 12 additions and 0 deletions
--- a/gnu/usr.bin/man/man/man.c
+++ b/gnu/usr.bin/man/man/man.c
@ -1108,16 +1108,28 @@ make_cat_file (path, man_file, cat_file)
 	fprintf (stderr, "\ntrying command: %s\n", command);
      else {

+#ifdef SETREUID
+	setreuid(-1, ruid);
+	setregid(-1, rgid);
+#endif
 	if ((pp = popen(command, "r")) == NULL) {
 	  s = errno;
 	  fprintf(stderr, "Failed.\n");
 	  errno = s;
 	  perror("popen");
+#ifdef SETREUID
+	  setreuid(-1, euid);
+	  setregid(-1, egid);
+#endif
 	  unlink(temp);
 	  restore_sigs();
 	  fclose(fp);
 	  return 0;
 	}
+#ifdef SETREUID
+	setreuid(-1, euid);
+	setregid(-1, egid);
+#endif

 	while ((s = getc(pp)) != EOF)
 	  putc(s, fp);