Blame SOURCES/0091-ccpp-do-not-read-data-from-root-directories.patch

8ec399
From 4f2c1ddd3e3b81d2d5146b883115371f1cada9f9 Mon Sep 17 00:00:00 2001
8ec399
From: Jakub Filak <jfilak@redhat.com>
8ec399
Date: Wed, 15 Apr 2015 12:14:52 +0200
8ec399
Subject: [ABRT PATCH] ccpp: do not read data from root directories
8ec399
8ec399
Users are allowed to modify /proc/[pid]/root to any directory by running
8ec399
their own MOUNT namespace.
8ec399
8ec399
Related: #1211835
8ec399
8ec399
Signed-off-by: Jakub Filak <jfilak@redhat.com>
8ec399
---
8ec399
 src/hooks/abrt-hook-ccpp.c | 2 +-
8ec399
 1 file changed, 1 insertion(+), 1 deletion(-)
8ec399
8ec399
diff --git a/src/hooks/abrt-hook-ccpp.c b/src/hooks/abrt-hook-ccpp.c
8ec399
index 5694f84..0606519 100644
8ec399
--- a/src/hooks/abrt-hook-ccpp.c
8ec399
+++ b/src/hooks/abrt-hook-ccpp.c
8ec399
@@ -678,7 +678,7 @@ int main(int argc, char** argv)
8ec399
     {
8ec399
         char *rootdir = get_rootdir(pid);
8ec399
 
8ec399
-        dd_create_basic_files(dd, fsuid, (rootdir && strcmp(rootdir, "/") != 0) ? rootdir : NULL);
8ec399
+        dd_create_basic_files(dd, fsuid, NULL);
8ec399
 
8ec399
         char source_filename[sizeof("/proc/%lu/somewhat_long_name") + sizeof(long)*3];
8ec399
         int source_base_ofs = sprintf(source_filename, "/proc/%lu/smaps", (long)pid);
8ec399
-- 
8ec399
1.8.3.1
8ec399