TIOCSPGRP security checks are insufficient
Chris Torek
chris at mimsy.UUCP
Tue Nov 8 15:00:37 AEST 1988
Index: /sys/sys/tty.c 4.3BSD,4.3BSD-tahoe Fix
Description:
The security checking in TIOCSPGRP is insufficient to do
what it was designed to do (which is not really all that
much anyway).
Repeat-by:
Examination.
Fix:
RCS file: RCS/tty.c,v
retrieving revision 1.11
diff -c2 -r1.11 tty.c
*** /tmp/,RCSt1007903 Mon Nov 7 23:52:18 1988
--- tty.c Mon Nov 7 23:52:03 1988
***************
*** 487,491 ****
case TIOCSPGRP: {
struct proc *p;
! int pgrp = *(int *)data;
if (u.u_uid && (flag & FREAD) == 0)
--- 487,491 ----
case TIOCSPGRP: {
struct proc *p;
! short pgrp = *(int *)data;
if (u.u_uid && (flag & FREAD) == 0)
--
In-Real-Life: Chris Torek, Univ of MD Comp Sci Dept (+1 301 454 7163)
Domain: chris at mimsy.umd.edu Path: uunet!mimsy!chris
More information about the Comp.bugs.4bsd.ucb-fixes
mailing list