Radix cross Linux

The main Radix cross Linux repository contains the build scripts of packages, which have the most complete and common functionality for desktop machines

452 Commits   2 Branches   1 Tag
Index
Trunk
Branches
Tags
Trunk
Branches
Tags
Home page
Home page
radix/system/trunk/sources/packages/s/shadow/patches/README 
     5         kx 
     5         kx /* begin *
     5         kx 
     5         kx    shadow-4.8.1-short-hostname.patch - login: display short hostname
     5         kx 
     5         kx    shadow-4.8.1-CVE-2005-4890.patch:
     5         kx    ================================
     5         kx      From 0f6a809b7c4c9a8f4adb5b25808dd68000e17aa2 Mon Sep 17 00:00:00 2001
     5         kx      From: mancha <mancha1@hush.com>
     5         kx      Date: Wed, 04 Dec 2013
     5         kx      Subject: restrict "su -c" only when callee is not root
     5         kx 
     5         kx      Shadow 4.1.5 addressed a tty-hijacking vulnerability in "su -c"
     5         kx      (CVE-2005-4890) by detaching the controlling terminal in the non-PAM
     5         kx      case via a TIOCNOTTY request.
     5         kx 
     5         kx      Bi-directional protection is excessive and breaks a commonly-used
     5         kx      methods for privilege escalation on non-PAM systems (e.g. xterm -e 
     5         kx      /bin/su -s /bin/bash -c /bin/bash myscript).
     5         kx 
     5         kx      This patch relaxes the restriction and only detaches the controlling
     5         kx      tty when the callee is not root (which is, after all, the threat vector).
     5         kx 
     5         kx  * end */
cSvn-ui 0.1.5
Subversion 1.14.2
Nginx 1.22.1

Where any material of this site is being reproduced, published or issued to others the reference to the source is obligatory.

© Andrey V. Kosteltsev, 2019 – 2025.