Debian bash 4.3-11debian/4.3-11 debian

author: Igor Pashev <pashev.igor@gmail.com> 2014-10-08 11:48:42 +0400
committer: Igor Pashev <pashev.igor@gmail.com> 2014-10-08 11:48:42 +0400
commit: 597d7d4d9df6e688e766f1da1c7de92b191fbde9 (patch)
tree: e758dd00a56a9039deba2abab755033466bd0cbf /debian/patches/privmode.diff
download: bash-debian.tar.gz
1 files changed, 19 insertions, 0 deletions
diff --git a/debian/patches/privmode.diff b/debian/patches/privmode.diff
new file mode 100644
index 0000000..d138669
--- /dev/null
+++ b/debian/patches/privmode.diff
@@ -0,0 +1,19 @@
+# DP: XXX missing description
+# DP: 
+# DP: Comment from Chet Ramey <chet@nike.ins.cwru.edu>:
+# DP: 
+# DP: Nope.  This will allow setuid scripts if not called as `sh' and not 
+# DP: called with the -p option.  I won't install this. 
+ 
+
+--- a/shell.c
++++ b/shell.c
+@@ -492,7 +492,7 @@
+   if (dump_translatable_strings)
+     read_but_dont_execute = 1;
+ 
+-  if (running_setuid && privileged_mode == 0)
++  if (running_setuid && privileged_mode == 0 && act_like_sh == 0)
+     disable_priv_mode ();
+ 
+   /* Need to get the argument to a -c option processed in the
author	Igor Pashev <pashev.igor@gmail.com>	2014-10-08 11:48:42 +0400
committer	Igor Pashev <pashev.igor@gmail.com>	2014-10-08 11:48:42 +0400
commit	597d7d4d9df6e688e766f1da1c7de92b191fbde9 (patch)
tree	e758dd00a56a9039deba2abab755033466bd0cbf /debian/patches/privmode.diff
download	bash-debian.tar.gz