[PD-cvs] pd/src s_inter.c,1.14,1.14.4.1

Miller Puckette millerpuckette at users.sourceforge.net
Wed Jul 18 01:34:14 CEST 2007 

Update of /cvsroot/pure-data/pd/src
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv10594/pd/src

Modified Files:
      Tag: stable_0_39
	s_inter.c 
Log Message:
changed seteuid() calls to setuid() to close security hole



Index: s_inter.c
===================================================================
RCS file: /cvsroot/pure-data/pd/src/s_inter.c,v
retrieving revision 1.14
retrieving revision 1.14.4.1
diff -C2 -d -r1.14 -r1.14.4.1
*** s_inter.c	15 Oct 2005 23:14:28 -0000	1.14
--- s_inter.c	17 Jul 2007 23:34:12 -0000	1.14.4.1
***************
*** 1018,1022 ****
          else if (!childpid)                     /* we're the child */
          {
!             seteuid(getuid());          /* lose setuid priveliges */
  #ifndef MACOSX
                  /* the wish process in Unix will make a wish shell and
--- 1018,1022 ----
          else if (!childpid)                     /* we're the child */
          {
!             setuid(getuid());          /* lose setuid priveliges */
  #ifndef MACOSX
                  /* the wish process in Unix will make a wish shell and
***************
*** 1155,1159 ****
          if (pipe(pipe9) < 0)
          {
!             seteuid(getuid());      /* lose setuid priveliges */
              sys_sockerror("pipe");
              return (1);
--- 1155,1159 ----
          if (pipe(pipe9) < 0)
          {
!             setuid(getuid());      /* lose setuid priveliges */
              sys_sockerror("pipe");
              return (1);
***************
*** 1162,1166 ****
          if (watchpid < 0)
          {
!             seteuid(getuid());      /* lose setuid priveliges */
              if (errno)
                  perror("sys_startgui");
--- 1162,1166 ----
          if (watchpid < 0)
          {
!             setuid(getuid());      /* lose setuid priveliges */
              if (errno)
                  perror("sys_startgui");
***************
*** 1171,1175 ****
          {
              sys_set_priority(1);
!             seteuid(getuid());      /* lose setuid priveliges */
              if (pipe9[1] != 0)
              {
--- 1171,1175 ----
          {
              sys_set_priority(1);
!             setuid(getuid());      /* lose setuid priveliges */
              if (pipe9[1] != 0)
              {
***************
*** 1188,1192 ****
          {
              sys_set_priority(0);
!             seteuid(getuid());      /* lose setuid priveliges */
              close(pipe9[0]);
              sys_watchfd = pipe9[1];
--- 1188,1192 ----
          {
              sys_set_priority(0);
!             setuid(getuid());      /* lose setuid priveliges */
              close(pipe9[0]);
              sys_watchfd = pipe9[1];
***************
*** 1196,1200 ****
      }
  
!     seteuid(getuid());          /* lose setuid priveliges */
  #endif /* __linux__ */
  
--- 1196,1200 ----
      }
  
!     setuid(getuid());          /* lose setuid priveliges */
  #endif /* __linux__ */

More information about the Pd-cvs mailing list