Gitiles
Code Review Sign In
LeafOS / LeafOS-Devices / android_kernel_realme_mt6785 / 432870dab85a2f69dc417022646cb9a70acf7f94
commit432870dab85a2f69dc417022646cb9a70acf7f94[log] [tgz]
authorOleg Nesterov <oleg@redhat.com>Mon Apr 06 16:16:02 2009 +0200
committerLinus Torvalds <torvalds@linux-foundation.org>Mon Apr 06 14:57:23 2009 -0700
tree4c9c08d7fb77744b1fd04615a76ab0a9105fad07
parent22ae77bc7ac115b9d518d5cbc13d39317079b2b0 [diff]
exit_notify: kill the wrong capable(CAP_KILL) check

The CAP_KILL check in exit_notify() looks just wrong, kill it.

Whatever logic we have to reset ->exit_signal, the malicious user
can bypass it if it execs the setuid application before exiting.

Signed-off-by: Oleg Nesterov <oleg@redhat.com>
Acked-by: Serge Hallyn <serue@us.ibm.com>
Acked-by: Roland McGrath <roland@redhat.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
1 file changed
tree: 4c9c08d7fb77744b1fd04615a76ab0a9105fad07
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. usr/
  20. virt/
  21. .gitignore
  22. .mailmap
  23. COPYING
  24. CREDITS
  25. Kbuild
  26. MAINTAINERS
  27. Makefile
  28. README
  29. REPORTING-BUGS