d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

o Fix a mis-transcription of sef's -STABLE protection fixes--only root

Browse Source 
could debug processes after the commit that introduced the typo.
  Security is good, but security is not always the same as turning things
  off :-).

PR:		kern/22711
Obtained from:	brooks@one-eyed-alien.net
This commit is contained in:
Robert Watson 2000-11-10 23:57:48 +00:00
parent f1303ab4b2
commit 7f73938e96
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
sys/kern/kern_prot.c
View File

@ -1084,7 +1084,7 @@ p_candebug(const struct proc *p1, const struct proc *p2, int *privused)
/* add a CAP_SYS_PTRACE here? */
if (p1->p_cred->pc_ucred->cr_uid != p2->p_cred->p_ruid ||
p1->p_cred->p_ruid != p2->p_cred->p_ruid ||
p1->p_cred->p_svuid == p2->p_cred->p_ruid ||
p1->p_cred->p_svuid != p2->p_cred->p_ruid ||
p2->p_flag & P_SUGID) {
if ((error = suser_xxx(0, p1, PRISON_ROOT)))
return (error);