SOURCES: vixie-cron-setuid_check.patch (NEW) - CVE-2006-2607 fix f...

Fri Jun 9 18:41:24 CEST 2006

Author: glen                         Date: Fri Jun  9 16:41:24 2006 GMT
Module: SOURCES                       Tag: HEAD
---- Log message:
- CVE-2006-2607 fix from gentoo

---- Files affected:
SOURCES:
   vixie-cron-setuid_check.patch (NONE -> 1.1)  (NEW)

---- Diffs:

================================================================
Index: SOURCES/vixie-cron-setuid_check.patch
diff -u /dev/null SOURCES/vixie-cron-setuid_check.patch:1.1

--- /dev/null	Fri Jun  9 18:41:24 2006
+++ SOURCES/vixie-cron-setuid_check.patch	Fri Jun  9 18:41:19 2006
@@ -0,0 +1,29 @@
+--- vixie-cron-4.1/do_command.c	2006-05-25 16:44:26.000000000 +0400
++++ vixie-cron-4.1.lk/do_command.c	2006-05-25 16:42:25.000000000 +0400
+@@ -240,12 +240,23 @@
+ 			}
+ 		}
+ #else
+-		setgid(e->pwd->pw_gid);
++		
+ 		initgroups(usernm, e->pwd->pw_gid);
+ #if (defined(BSD)) && (BSD >= 199103)
+ 		setlogin(usernm);
+ #endif /* BSD */
+-		setuid(e->pwd->pw_uid);	/* we aren't root after this... */
++		// setuid(e->pwd->pw_uid);	/* we aren't root after this... */
++		
++	if ( setgid(e->pwd->pw_gid) == -1 ) {
++		fprintf(stderr,"can't set gid for %s\n", e->pwd->pw_name);
++		_exit(1);
++	}
++		
++	if ( setuid(e->pwd->pw_uid) == -1 ) {
++		fprintf(stderr,"can't set uid for %s\n", e->pwd->pw_name);
++		_exit(1);
++	}
++		
+ 
+ #endif /* LOGIN_CAP */
+ 		chdir(env_get("HOME", e->envp));
+
================================================================
