From f03094b1950325fd0d7f59fd626ac3d34ce56731 Mon Sep 17 00:00:00 2001 From: Ondrej Kos Date: Thu, 7 Feb 2013 11:26:45 +0100 Subject: TOOLS: Use file descriptor to avoid races when creating a home directory When creating a home directory, the destination tree can be modified in various ways while it is being constructed because directory permissions are set before populating the directory. This can lead to file creation and permission changes outside the target directory tree, using hard links. This security problem was assigned CVE-2013-0219 https://fedorahosted.org/sssd/ticket/1782 --- Makefile.am | 1 + 1 file changed, 1 insertion(+) (limited to 'Makefile.am') diff --git a/Makefile.am b/Makefile.am index d668acc25..42ef8e0fa 100644 --- a/Makefile.am +++ b/Makefile.am @@ -606,6 +606,7 @@ files_tests_SOURCES = \ src/tests/files-tests.c \ src/util/check_and_open.c \ src/tools/selinux.c \ + src/util/atomic_io.c \ src/tools/files.c files_tests_CFLAGS = \ $(AM_CFLAGS) \ -- cgit