9537 – /usr/libexec/pt_chown is setuid to root

Bug 9537 - /usr/libexec/pt_chown is setuid to root

Summary: /usr/libexec/pt_chown is setuid to root

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	glibc
Sub Component:
Version:	8.0
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Jakub Jelinek
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2000-02-18 00:53 UTC by wingc
Modified:	2016-11-24 14:54 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2003-04-21 23:45:34 UTC
Embargoed:

Attachments	(Terms of Use)

Description wingc 2000-02-18 00:53:06 UTC

Well, I know that some people have complained about pt_chown not being
setuid to root in RH 6.1, but I'd like to recommend that it still be
non-setuid in RH 6.2.

Here are my reasons:

- you don't need pt_chown setuid if you use devpts

- everyone should be using devpts if they have a standard RH 6.2 setup

- as such, leaving pt_chown setuid to root is a bad idea if the vast
majority of people will never use it. Everyone has to install glibc, so
there will be an unnecessary setuid program on every RH system out there.

- if you take the setuid bit off it now, you won't have to worry about
having to audit it ever again. Even if some future release of glibc
accidentally breaks it, or if something else causes it to be unsafe, with
the setuid bit removed it can't hurt anyone.



Thanks,

Chris Wing
wingc.edu

Comment 1 Cristian Gafton 2000-05-22 14:52:59 UTC

assign to jakub

Comment 2 Ulrich Drepper 2003-04-21 23:45:34 UTC

RHL9 does not have pt_chown with the SUID/SGID bit set.

Note You need to log in before you can comment on or make changes to this bug.