El 12 de febrer de 2012 21:19, Steven Chamberlain <[email protected]> ha escrit: > I tested that /lib/freebsd/mount (for which /bin/mount is wrapper > script) does accept a user-specified PATH when looking for a helper to > execute. But fortunately it is not setuid (at least on my own Squeeze > installation). > > If anyone allows the use of sudo for /bin/mount, that should reset the > environment to something sane, so they should not be at risk.
Wouldn't it be better to fix the bug instead? >> If this patch is the problem, we could use execvP() instead (like upstream >> did). > > I see that upstream previously searched /sbin then /usr/sbin, before > rewriting it to use execvP with _PATH_SYSPATH which is > "/rescue:/sbin:/usr/sbin". If someone can confirm this fixes the problem, I could cherry-pick the execvP() fix from upstream, but that requires importing the whole execvP() implementation so I'd rather be sure it's what we need. Could someone please check if 044_mount_exec.diff is the culprit? -- Robert Millan -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
