mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-08-31 06:16:03 +00:00
Code Issues Releases Wiki Activity

logprof and genprof were creating Px and Cx execute permissions with

Browse Source 
the modifiers as lowercase (meaning to pass on sensitive environment
variables to the exec'ed process) even if the user told them not to
when prompted. This patch fixes the issue.
This commit is contained in:
Steve Beattie
2011-08-17 16:26:41 -07:00
parent 084233a207
commit 386a5abc7d
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
utils/Immunix/AppArmor.pm
View File

@@ -2254,7 +2254,7 @@ sub handlechildren($$$) {
my $ynans = UI_YesNo($px_mesg, $px_default);
$ans = "CMD_$match";
if ($ynans eq "y") {
$exec_mode &= ~$AA_EXEC_UNSAFE;
$exec_mode &= ~($AA_EXEC_UNSAFE | ($AA_EXEC_UNSAFE << $AA_OTHER_SHIFT));
}
} elsif ($ans eq "CMD_ux") {
$exec_mode = str_to_mode("ux");