ports/sysutils/syslog-ng-devel/files/patch-src_main.c
Wesley Shields 7e7393f75e Add patch to fix chroot vulnerability.
PR:		ports/128960
Submitted by:	Eygene Ryabinkin <rea-fbsd@codelabs.ru>
Approved by:	Ivan Lago <ivan.lago@ifom-ieo-campus.it> (maintainer)
Security:	http://www.vuxml.org/freebsd/75f2382e-b586-11dd-95f9-00e0815b8da8.html
2008-11-18 23:21:09 +00:00

22 lines
705 B
C

Patch for CVE-2008-5110
Obtained from: http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=14;mbox=yes;bug=505791
Note: was not able to cleanly apply the original patch, so it was recreated
by hand using the original submission contents
--- src/main.c.orig 2008-03-23 23:35:27.000000000 +0300
+++ src/main.c 2008-11-18 14:38:13.000000000 +0300
@@ -275,6 +275,13 @@
{
if (chroot_dir)
{
+ if (chdir(chroot_dir) < 0)
+ {
+ msg_error("Error during chdir() before chroot()",
+ evt_tag_errno(EVT_TAG_OSERROR, errno),
+ NULL);
+ return 0;
+ }
if (chroot(chroot_dir) < 0)
{
msg_error("Error during chroot()",