diff options
| author | Theodore Tso <tytso@mit.edu> | 1994-06-02 16:17:47 +0000 |
|---|---|---|
| committer | Theodore Tso <tytso@mit.edu> | 1994-06-02 16:17:47 +0000 |
| commit | 510e4a96cdee9e8dd8770de068dea815b520c4aa (patch) | |
| tree | 7b43601cd3a7fea0c7aa5f1b15be50521ce88326 /src/appl | |
| parent | 85aceafed74104ffa09f65f68ef81b235be0e258 (diff) | |
| download | krb5-510e4a96cdee9e8dd8770de068dea815b520c4aa.tar.gz krb5-510e4a96cdee9e8dd8770de068dea815b520c4aa.tar.xz krb5-510e4a96cdee9e8dd8770de068dea815b520c4aa.zip | |
Fix security hole in krcp.c
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@3658 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/appl')
| -rw-r--r-- | src/appl/bsd/krcp.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/appl/bsd/krcp.c b/src/appl/bsd/krcp.c index 361574927..f874ce064 100644 --- a/src/appl/bsd/krcp.c +++ b/src/appl/bsd/krcp.c @@ -442,7 +442,9 @@ main(argc, argv) if (encryptflag) send_auth(); } + (void) setreuid(0, userid); sink(1, argv+argc-1); + (void) setreuid(userid, 0); #else rem = rcmd(&host, port, pwd->pw_name, suser, buf, 0); |