oss-sec mailing list archives
Re: [PATCH] package/skeleton-init-sysv: Set sticky bit on /dev/shm
From: Peter Korsgaard <peter () korsgaard com>
Date: Mon, 06 May 2024 23:04:01 +0200
"Ben" == Ben Hutchings via buildroot <buildroot () buildroot org> writes:
/dev/shm is a world-writable directory, like /tmp, and should also have the sticky bit set. Without this, any user can delete and replace another user's files in /dev/shm.
This bug has been present since /dev/shm was added to the skeleton /etc/fstab, but appears to have been fixed for systems using systemd by commit 76fc9275f14e "system: separate sysv and systemd parts of the skeleton" which went into Buildroot 2017.08.
Signed-off-by: Ben Hutchings <ben.hutchings () mind be> Fixes: 22fde22e35f98f7830c2f8955465532328348cd1
Committed to 2024.02.x, thanks. -- Bye, Peter Korsgaard
Current thread:
- [PATCH] package/skeleton-init-sysv: Set sticky bit on /dev/shm Ben Hutchings (Apr 11)
- Buildroot: incorrect permissons on /dev/shm Ben Hutchings (Apr 11)
- Re: Buildroot: incorrect permissons on /dev/shm Ben Hutchings (May 06)
- Re: [Buildroot] Buildroot: incorrect permissons on /dev/shm Yann E. MORIN (May 06)
- Re: Buildroot: incorrect permissons on /dev/shm Peter Korsgaard (May 07)
- Re: Buildroot: incorrect permissons on /dev/shm Ben Hutchings (May 06)
- Buildroot: incorrect permissons on /dev/shm Ben Hutchings (Apr 11)
- Re: [Buildroot] [PATCH] package/skeleton-init-sysv: Set sticky bit on /dev/shm Yann E. MORIN (Apr 11)
- Re: [PATCH] package/skeleton-init-sysv: Set sticky bit on /dev/shm Peter Korsgaard (May 06)