Skip to content
Commit 7b377456 authored by Michal Srb's avatar Michal Srb Committed by Matthieu Herrb
Browse files

Open files with O_NOFOLLOW. (CVE-2017-16611)



A non-privileged X client can instruct X server running under root to open any
file by creating own directory with "fonts.dir", "fonts.alias" or any font file
being a symbolic link to any other file in the system. X server will then open
it. This can be issue with special files such as /dev/watchdog.

Reviewed-by: default avatarMatthieu Herrb <matthieu@herrb.eu>
parent d82dfe25
Loading
Loading
Loading
Loading
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment