diff options
| author |   Ned Ludd <solar@gentoo.org> | 2005-04-24 18:26:17 +0000 |
|---|---|---|
| committer | Ned Ludd <solar@gentoo.org> | 2005-04-24 18:26:17 +0000 |
| commit | d983ffbdc5571884d5d2910e9bc05f50d84ec11c (patch) | |
| tree | 6e482eb7776a64c00032fe7f9c6bacba72225ec7 /sys-devel/gdb/files | |
| parent | Removing a debug statement I left in. (diff) | |
| download | gentoo-2-d983ffbdc5571884d5d2910e9bc05f50d84ec11c.tar.gz gentoo-2-d983ffbdc5571884d5d2910e9bc05f50d84ec11c.tar.bz2 gentoo-2-d983ffbdc5571884d5d2910e9bc05f50d84ec11c.zip | |
- avoid executing arbitrary .gdbinit files in pwd that are not owned by the current uid or that are world writeable. sec bug #88398
(Portage version: 2.0.51.20)
Diffstat (limited to 'sys-devel/gdb/files')
| -rw-r--r-- | sys-devel/gdb/files/digest-gdb-6.3-r2 | 3 | ||||
| -rw-r--r-- | sys-devel/gdb/files/gdb-6.3-gdbinit-stat.patch | 11 |
2 files changed, 14 insertions, 0 deletions
diff --git a/sys-devel/gdb/files/digest-gdb-6.3-r2 b/sys-devel/gdb/files/digest-gdb-6.3-r2 new file mode 100644 index 000000000000..081c33419a3e --- /dev/null +++ b/sys-devel/gdb/files/digest-gdb-6.3-r2 @@ -0,0 +1,3 @@ +MD5 05b928f41fa5b482e49ca2c24762a0ae gdb-6.3.tar.bz2 13446729 +MD5 f96eec021725e7b4cdc6713ececed89a gdb_6.3-5.diff.gz 149881 +MD5 35e70c29e393433b3847527d808f59c2 gdb_init.txt.bz2 6247 diff --git a/sys-devel/gdb/files/gdb-6.3-gdbinit-stat.patch b/sys-devel/gdb/files/gdb-6.3-gdbinit-stat.patch new file mode 100644 index 000000000000..36e1289260e2 --- /dev/null +++ b/sys-devel/gdb/files/gdb-6.3-gdbinit-stat.patch @@ -0,0 +1,11 @@ +--- gdb/main.c.orig 2005-04-08 18:21:50.000000000 -0400 ++++ gdb/main.c 2005-04-08 18:50:58.000000000 -0400 +@@ -693,7 +693,7 @@ + + if (!homedir + || memcmp ((char *) &homebuf, (char *) &cwdbuf, sizeof (struct stat))) +- if (!inhibit_gdbinit) ++ if (!inhibit_gdbinit && (cwdbuf.st_uid == getuid()) && (!cwdbuf.st_mode & (S_IWOTH))) + { + catch_command_errors (source_command, gdbinit, 0, RETURN_MASK_ALL); + } |