Re: [Fedora 12/19] ptrace: Do not allow ptrace() from unsigned process to signed one

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Wed, 2013-09-04 at 17:24 -0400, Vivek Goyal wrote:

Doesn't this:

> +		if (!ptraced_by_unsafe_tracer())
> +			bprm->cred->proc_signed = true;

race with this if the attacker is able to run between the check and
proc_signed being set to true?

> +	if (mode != PTRACE_MODE_READ && child_cred->proc_signed &&
> +	    !cred->proc_signed) {
> +		ret = -EPERM;
> +		goto out;
> +	}


-- 
Matthew Garrett <matthew.garrett@xxxxxxxxxx>
_______________________________________________
kernel mailing list
kernel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/kernel
[Index of Archives]     [Fedora General Discussion]     [Older Fedora Users Archive]     [Fedora Advisory Board]     [Fedora Security]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [ATA RAID]     [Fedora Marketing]     [Fedora Mentors]     [Fedora Package Announce]     [Fedora Package Review]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Coolkey]     [Yum Users]     [Tux]     [Yosemite News]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [USB]     [Asterisk PBX]

  Powered by Linux