← Back to branch summary

~stgraber/apport/pidns-support

Viewing all changes in revision 2723.

  • Committer: Martin Pitt
  • Date: 2013-10-25 04:17:18 UTC
  • Revision ID: martin.pitt@canonical.com-20131025041718-mab433xsoq3u3ew4
https://launchpad.net/bugs/1242435
* SECURITY FIX: For setuid programs which drop their privileges after startup, make the report and core dumps owned by root, to avoid possible data disclosure. Also, change core dump files to permissions "0600". Thanks to Martin Carpenter for discovering this! (CVE-2013-1067, LP: #1242435)

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: