diff options
author | Wenzong Fan <wenzong.fan@windriver.com> | 2013-06-18 23:21:29 -0400 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2013-06-19 09:08:50 +0100 |
commit | 871ae7a6453b3b66610fd8bbaa770c92be850e19 (patch) | |
tree | 96efe94f9b8bf9b6f5d8de16d5240db6dd4688cf | |
parent | f24aed8d7e41cce277c6eff4ff5ab07b8e39ffff (diff) | |
download | openembedded-core-871ae7a6453b3b66610fd8bbaa770c92be850e19.tar.gz openembedded-core-871ae7a6453b3b66610fd8bbaa770c92be850e19.tar.bz2 openembedded-core-871ae7a6453b3b66610fd8bbaa770c92be850e19.zip |
libpam: Fix for CVE-2010-4708
Change default for user_readenv to 0 and document the
new default for user_readenv.
This fix from:
http://pam.cvs.sourceforge.net/viewvc/pam/Linux-PAM/modules/pam_env
/pam_env.c?r1=1.22&r2=1.23&view=patch
http://pam.cvs.sourceforge.net/viewvc/pam/Linux-PAM/modules/pam_env
/pam_env.8.xml?r1=1.7&r2=1.8&view=patch
Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r-- | meta/recipes-extended/pam/libpam/libpam-fix-for-CVE-2010-4708.patch | 41 | ||||
-rw-r--r-- | meta/recipes-extended/pam/libpam_1.1.6.bb | 1 |
2 files changed, 42 insertions, 0 deletions
diff --git a/meta/recipes-extended/pam/libpam/libpam-fix-for-CVE-2010-4708.patch b/meta/recipes-extended/pam/libpam/libpam-fix-for-CVE-2010-4708.patch new file mode 100644 index 0000000000..5d2b69aae0 --- /dev/null +++ b/meta/recipes-extended/pam/libpam/libpam-fix-for-CVE-2010-4708.patch @@ -0,0 +1,41 @@ +Upstream-Status: Backport + +Fix for CVE-2010-4708 + +Change default for user_readenv to 0 and document the +new default for user_readenv. + +This fix is got from: +http://pam.cvs.sourceforge.net/viewvc/pam/Linux-PAM/modules/pam_env +/pam_env.c?r1=1.22&r2=1.23&view=patch +http://pam.cvs.sourceforge.net/viewvc/pam/Linux-PAM/modules/pam_env +/pam_env.8.xml?r1=1.7&r2=1.8&view=patch + +Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> + +--- +--- a/modules/pam_env/pam_env.c 2012-09-05 13:57:47.000000000 +0800 ++++ b/modules/pam_env/pam_env.c 2012-09-05 13:58:05.000000000 +0800 +@@ -10,7 +10,7 @@ + #define DEFAULT_READ_ENVFILE 1 + + #define DEFAULT_USER_ENVFILE ".pam_environment" +-#define DEFAULT_USER_READ_ENVFILE 1 ++#define DEFAULT_USER_READ_ENVFILE 0 + + #include "config.h" + +--- a/modules/pam_env/pam_env.8.xml 2012-09-05 13:58:24.000000000 +0800 ++++ b/modules/pam_env/pam_env.8.xml 2012-09-05 13:59:36.000000000 +0800 +@@ -147,7 +147,10 @@ + <listitem> + <para> + Turns on or off the reading of the user specific environment +- file. 0 is off, 1 is on. By default this option is on. ++ file. 0 is off, 1 is on. By default this option is off as user ++ supplied environment variables in the PAM environment could affect ++ behavior of subsequent modules in the stack without the consent ++ of the system administrator. + </para> + </listitem> + </varlistentry> diff --git a/meta/recipes-extended/pam/libpam_1.1.6.bb b/meta/recipes-extended/pam/libpam_1.1.6.bb index 73a8f88163..94101d4819 100644 --- a/meta/recipes-extended/pam/libpam_1.1.6.bb +++ b/meta/recipes-extended/pam/libpam_1.1.6.bb @@ -22,6 +22,7 @@ SRC_URI = "http://linux-pam.org/library/Linux-PAM-${PV}.tar.bz2 \ file://fixsepbuild.patch \ file://reflect-the-enforce_for_root-semantics-change-in-pam.patch \ file://add-checks-for-crypt-returning-NULL.patch \ + file://libpam-fix-for-CVE-2010-4708.patch \ " SRC_URI[md5sum] = "7b73e58b7ce79ffa321d408de06db2c4" SRC_URI[sha256sum] = "bab887d6280f47fc3963df3b95735a27a16f0f663636163ddf3acab5f1149fc2" |