Hello Kenneth, thanks for contacting us. This is almost certainly intentional behaviour (and, actually, unrelated to p7zip):
The permissions to create or delete a file in a directory depends upon the *directory* owner and permissions. In your example, the unprivileged user was able to create and delete the file in the directory, so the unprivileged user can do so again via the 7zip unpacking operation. It doesn't matter that someone else owned the file. The kernel doesn't care about file owner when deleting it. A process only needs write and execute access to the directory in order to delete files within the directory. Thanks -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1810337 Title: p7zip-full privlege gain? To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/p7zip/+bug/1810337/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
