Review Request 113518: KDM/KFrontend: Avoid potentially exploitable privilege dropping
Oswald Buddenhagen
ossi at kde.org
Tue Nov 5 18:54:13 GMT 2013
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
http://git.reviewboard.kde.org/r/113518/#review43117
-----------------------------------------------------------
what exploit do you have in mind?
- Oswald Buddenhagen
On Nov. 5, 2013, 10:49 a.m., Martin Bříza wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> http://git.reviewboard.kde.org/r/113518/
> -----------------------------------------------------------
>
> (Updated Nov. 5, 2013, 10:49 a.m.)
>
>
> Review request for kde-workspace and Oswald Buddenhagen.
>
>
> Repository: kde-workspace
>
>
> Description
> -------
>
> Initialize the user's groups in between calling setegid and seteuid to have the correct supplemental groups in place.
>
>
> Diffs
> -----
>
> kdm/kfrontend/kgreeter.cpp 1bddab5
>
> Diff: http://git.reviewboard.kde.org/r/113518/diff/
>
>
> Testing
> -------
>
>
> Thanks,
>
> Martin Bříza
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20131105/dbb8e2fd/attachment.htm>
More information about the kde-core-devel
mailing list