oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Check owner too

Browse Source
This commit is contained in:
Love Hornquist Astrand
2013-07-12 17:20:41 +02:00
parent f396f66523
commit 884b007938
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
lib/krb5/fcache.c
View File

@@ -451,6 +451,11 @@ fcc_open(krb5_context context,
close(fd);
return EPERM;
}
if (sb2.st_uid != getuid()) {
krb5_set_error_message(context, EPERM, N_("Refuses to open cache files not own by myself FILE:%s (owned by %d)", ""), filename, (int)sb2.st_uid);
close(fd);
return EPERM;
}
if ((sb2.st_mode & 077) != 0) {
krb5_set_error_message(context, EPERM,
N_("Refuses to open group/other readable files FILE:%s", ""), filename);