This website requires JavaScript.
Explore
Help
Sign In
Aren
/
NetBSD
Watch
1
Star
0
Fork
You've already forked NetBSD
0
Code
Issues
Pull Requests
Packages
Projects
Releases
Wiki
Activity
3764e582c5
NetBSD
/
sys
/
kern
/
sysv_shm.c
2 lines
35 B
C
Raw
Normal View
History
Unescape
Escape
From: Guido van Rooij <guido@gvr.win.tue.nl> when mmapping a file, permissions are checked as it should be. When mprotect()-ing the address range afterwards, no protection was checked regarding the protection of the file originally opened. So when you open /usr/bin/su RDONLY and SHARED you could afterwards change the mmapped region to READ|WRITE. This gave the possibility to obtain root privs obviously.
1993-04-09 21:16:30 +04:00
revision
1.2
intentionally
removed