Minki/linux
1
0
Fork 1
mirror of https://github.com/torvalds/linux.git synced 2024-11-11 06:31:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
073931017b
linux/fs/f2fs
History
Jan Kara 073931017b posix_acl: Clear SGID bit when setting file permissions 
When file permissions are modified via chmod(2) and the user is not in
the owning group or capable of CAP_FSETID, the setgid bit is cleared in
inode_change_ok().  Setting a POSIX ACL via setxattr(2) sets the file
permissions as well as the new ACL, but doesn't clear the setgid bit in
a similar way; this allows to bypass the check in chmod(2).  Fix that.

References: CVE-2016-7097
Reviewed-by: Christoph Hellwig <hch@lst.de>
Reviewed-by: Jeff Layton <jlayton@redhat.com>
Signed-off-by: Jan Kara <jack@suse.cz>
Signed-off-by: Andreas Gruenbacher <agruenba@redhat.com>
2016-09-22 10:55:32 +02:00
..
acl.c posix_acl: Clear SGID bit when setting file permissions 2016-09-22 10:55:32 +02:00
acl.h f2fs: clean up coding style and redundancy 2016-07-25 12:58:12 -07:00
checkpoint.c The major change in this version is mitigating cpu overheads on write paths by 2016-07-27 10:36:31 -07:00
data.c f2fs: drop bio->bi_rw manual assignment 2016-08-04 14:19:16 -06:00
debug.c f2fs: flush inode metadata when checkpoint is doing 2016-06-02 18:05:11 -07:00
dir.c Merge branch 'work.const-qstr' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs 2016-08-06 09:49:02 -04:00
extent_cache.c f2fs: disable extent_cache for fcollapse/finsert inodes 2016-07-15 15:21:20 -07:00
f2fs.h Merge branch 'work.const-qstr' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs 2016-08-06 09:49:02 -04:00
file.c f2fs: support an ioctl to move a range of data blocks 2016-07-20 14:53:20 -07:00
gc.c The major change in this version is mitigating cpu overheads on write paths by 2016-07-27 10:36:31 -07:00
gc.h f2fs: detect idle time depending on user behavior 2016-01-11 15:56:37 -08:00
hash.c f2fs: introduce dot and dotdot name check 2015-05-28 15:41:34 -07:00
inline.c The major change in this version is mitigating cpu overheads on write paths by 2016-07-27 10:36:31 -07:00
inode.c f2fs: avoid mark_inode_dirty 2016-07-08 10:34:09 -07:00
Kconfig f2fs: add mount option to select fault injection ratio 2016-05-07 10:32:22 -07:00
Makefile fs crypto: move per-file encryption from f2fs tree to fs/crypto 2016-03-17 21:19:33 -07:00
namei.c f2fs: fix to report error number of f2fs_find_entry 2016-07-20 14:53:19 -07:00
node.c The major change in this version is mitigating cpu overheads on write paths by 2016-07-27 10:36:31 -07:00
node.h f2fs: produce more nids and reduce readahead nats 2016-07-06 10:44:08 -07:00
recovery.c f2fs: handle error case with f2fs_bug_on 2016-07-20 14:53:22 -07:00
segment.c The major change in this version is mitigating cpu overheads on write paths by 2016-07-27 10:36:31 -07:00
segment.h f2fs: add maximum prefree segments 2016-07-15 15:21:21 -07:00
shrinker.c f2fs: produce more nids and reduce readahead nats 2016-07-06 10:44:08 -07:00
super.c Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs 2016-07-28 12:59:05 -07:00
trace.c f2fs: use bio op accessors 2016-06-07 13:41:38 -06:00
trace.h f2fs: add sbi and page pointer in f2fs_io_info 2015-05-28 15:41:32 -07:00
xattr.c f2fs: avoid mark_inode_dirty 2016-07-08 10:34:09 -07:00
xattr.h f2fs: add missing argument to f2fs_setxattr stub 2016-03-17 21:19:47 -07:00