d5f85ed9c9
open the score file at the start and then drop all setgid privileges while keeping a (close-on-exec) file descriptor open to it. In order to allow this the static data files have to be made world readable. In addition a potential buffer overrun with corrupted score files is avoided by more careful use of scanf (note that SCORE_SCANF_FMT is defined alongside the definition of the relevant structure). Submitted in PR 8015 by Joseph Myers <jsm28@cam.ac.uk> |
||
|---|---|---|
| .. | ||
| games | ||
| BUGS | ||
| Makefile | ||
| atc.6 | ||
| def.h | ||
| extern.c | ||
| extern.h | ||
| grammar.y | ||
| graphics.c | ||
| include.h | ||
| input.c | ||
| lex.l | ||
| list.c | ||
| log.c | ||
| main.c | ||
| pathnames.h | ||
| struct.h | ||
| tunable.c | ||
| tunable.h | ||
| update.c | ||