[LTP] [PATCH v2 4/4] Add test for CVE 2018-13405
Martin Doucha
mdoucha@suse.cz
Thu Aug 26 16:07:58 CEST 2021
On 26. 08. 21 15:27, Petr Vorel wrote:
> Hi Martin,
>
>> +/*
>> + * Copyright (c) 2021 SUSE LLC <mdoucha@suse.cz>
>> + *
>> + * CVE-2018-13405
>> + *
>> + * Check for possible privilege escalation through creating files with setgid
>> + * bit set inside a setgid directory owned by a group which the user does not
>> + * belong to. Fixed in:
> Maybe this info could be in docparse, but again, that can be fixed during merge.
Yes, please add the docparse tag during merge.
As for if/else braces, I thought the coding style was to add braces
around multi-line statements even if it's a single command.
--
Martin Doucha mdoucha@suse.cz
QA Engineer for Software Maintenance
SUSE LINUX, s.r.o.
CORSO IIa
Krizikova 148/34
186 00 Prague 8
Czech Republic
More information about the ltp
mailing list