posix_acl: Clear SGID bit when setting file permissions - user/sven/linux.git

diff options

author	Jan Kara <jack@suse.cz>	2016-09-19 17:39:09 +0200
committer	Ben Hutchings <ben@decadent.org.uk>	2016-11-20 01:17:38 +0000
commit	f2ba3e2310b3967720b83126db8684c69ce41894 (patch)
tree	30b237b20b24ab7692e160bfc01d353f2a3e29b7 /include/linux/raid
parent	3418703a9d04fa65f993e89a3fa6bfeed3c1fe7c (diff)

posix_acl: Clear SGID bit when setting file permissions

commit 073931017b49d9458aa351605b43a7e34598caef upstream. When file permissions are modified via chmod(2) and the user is not in the owning group or capable of CAP_FSETID, the setgid bit is cleared in inode_change_ok(). Setting a POSIX ACL via setxattr(2) sets the file permissions as well as the new ACL, but doesn't clear the setgid bit in a similar way; this allows to bypass the check in chmod(2). Fix that. References: CVE-2016-7097 Reviewed-by: Christoph Hellwig <hch@lst.de> Reviewed-by: Jeff Layton <jlayton@redhat.com> Signed-off-by: Jan Kara <jack@suse.cz> Signed-off-by: Andreas Gruenbacher <agruenba@redhat.com> [bwh: Backported to 3.16: - Drop changes to orangefs - Adjust context - Update ext3 as well] Signed-off-by: Ben Hutchings <ben@decadent.org.uk>

Diffstat (limited to 'include/linux/raid')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: