mirror of https://github.com/mkerrisk/man-pages
prctl.2: Amend details of PR_SET_PDEATHSIG
The corresponding kernel change from Marchel Holtmann was The attached patch fixes a flaw in the "parent process death signal" when executing SUID binaries. An unprivileged user may send arbitrary signal to a child process even if it is running with higher privileges. The idea to fix this issue is to reset pdeath_signal not only on fork, but also on the execution of a SUID binary. Reported-by: Marcel Holtmann <marcel@holtmann.org> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
84b183e9f7
commit
c7c7235c38
|
@ -43,7 +43,7 @@
|
|||
.\" FIXME: Document PR_TASK_PERF_EVENTS_DISABLE and
|
||||
.\" PR_TASK_PERF_EVENTS_ENABLE (new in 2.6.32)
|
||||
.\"
|
||||
.TH PRCTL 2 2012-04-14 "Linux" "Linux Programmer's Manual"
|
||||
.TH PRCTL 2 2012-04-23 "Linux" "Linux Programmer's Manual"
|
||||
.SH NAME
|
||||
prctl \- operations on a process
|
||||
.SH SYNOPSIS
|
||||
|
@ -220,7 +220,9 @@ in the range 1..maxsig, or 0 to clear).
|
|||
This is the signal that the calling process will get when its
|
||||
parent dies.
|
||||
This value is cleared for the child of a
|
||||
.BR fork (2).
|
||||
.BR fork (2)
|
||||
and (since Linux 2.5.36 / 2.6.23)
|
||||
when execing a set-user_ID or set-group-ID binary.
|
||||
.TP
|
||||
.BR PR_GET_PDEATHSIG " (since Linux 2.3.15)"
|
||||
Return the current value of the parent process death signal,
|
||||
|
|
Loading…
Reference in New Issue