Mercurial > emacs

diff lib-src/ChangeLog @ 107762:2d36607da023

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Fix permissions handling (CVE-2010-0825). * movemail.c (main): Check return values of setuid. Avoid possibility of symlink attack when movemail is setgid mail (CVE-2010-0825).
author Chong Yidong <cyd@stupidchicken.com>
date Fri, 02 Apr 2010 11:24:16 -0400
parents f46f743d330a
children 18e1800af997 10464087f606
line wrap: on
line diff
--- a/lib-src/ChangeLog	Fri Apr 02 04:30:09 2010 +0200
+++ b/lib-src/ChangeLog	Fri Apr 02 11:24:16 2010 -0400
@@ -1,3 +1,9 @@
+2010-04-02  Dan Rosenberg  <dan.j.rosenberg@gmail.com>  (tiny change)
+
+	* movemail.c (main): Check return values of setuid.  Avoid
+	possibility of symlink attack when movemail is setgid mail
+	(CVE-2010-0825).
+
 2010-03-19  Tetsurou Okazaki  <okazaki@be.to>  (tiny change)
 
 	* Makefile.in (uninstall): Handle the case where archlibdir does