On Tue, Apr 28, 2015 at 01:55:10PM -0600, Chas Williams III wrote: > Hello, this is a backport of 8b01fc86b9 for 3.14.y. Please > apply as this addresses CVE-2015-3339. > > Thanks! > > From: Jann Horn <jann@xxxxxxxxx> > Date: Sun, 19 Apr 2015 02:48:39 +0200 > Subject: [PATCH] fs: take i_mutex during prepare_binprm for set[ug]id > executables > > This prevents a race between chown() and execve(), where chowning a > setuid-user binary to root would momentarily make the binary setuid > root. > > This patch was mostly written by Linus Torvalds. > > Signed-off-by: Jann Horn <jann@xxxxxxxxx> > Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx> > [ciwillia@xxxxxxxxxxx: backport to 3.14: context] > --- You aren't going to sign off on your changes? Why not? -- To unsubscribe from this list: send the line "unsubscribe stable" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html