[gentoo-commits] proj/pax-utils:master commit in: /

Mike Frysinger Thu, 03 Mar 2016 13:16:47 -0800

commit:     4941a742dcd35d80d16fc96906cd022e03a3799b
Author:     Mike Frysinger <vapier <AT> gentoo <DOT> org>
AuthorDate: Thu Mar  3 21:10:26 2016 +0000
Commit:     Mike Frysinger <vapier <AT> gentoo <DOT> org>
CommitDate: Thu Mar  3 21:10:26 2016 +0000
URL:        https://gitweb.gentoo.org/proj/pax-utils.git/commit/?id=4941a742


security: whitelist readlinkat

Newer arches omit readlink entirely (like aarch64).

Reported-by: Steev Klimaszewski <steev <AT> gentoo.org>

 security.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/security.c b/security.c
index b635ccf..8019860 100644
--- a/security.c
+++ b/security.c
@@ -136,6 +136,7 @@ static void pax_seccomp_init(bool allow_forking)
 
                /* Syscalls listed because of sandbox.  */
                SCMP_SYS(readlink),
+               SCMP_SYS(readlinkat),
                SCMP_SYS(getcwd),
 
                /* Syscalls listed because of fakeroot.  */

[gentoo-commits] proj/pax-utils:master commit in: /

Reply via email to