This is the mail archive of the cygwin-patches@cygwin.com mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [Patch] Fixing the PROCESS_DUP_HANDLE security hole.

From: Christopher Faylor <cgf-no-personal-reply-please at cygwin dot com>
To: cygwin-patches at cygwin dot com
Date: Thu, 11 Nov 2004 23:33:22 -0500
Subject: Re: [Patch] Fixing the PROCESS_DUP_HANDLE security hole.
References: <3.0.5.32.20041111224857.00819b20@incoming.verizon.net>
Reply-to: cygwin-patches at cygwin dot com

On Thu, Nov 11, 2004 at 10:48:57PM -0500, Pierre A. Humblet wrote:
>Now that 1.5.12 is out, here is a patch to fix the PROCESS_DUP_HANDLE
>security hole.  It uses a new approach to reparenting: the parent
>duplicates the exec'ed process handle when signaled by the child.

Can you refresh my memory (a URL is fine) on "the PROCESS_DUP_HANDLE
security hole"?

I'm not 100% certain but I think if you cast back into the dim recesses
of cygwin's past, you might find that this is the way things used to be
done, to some degree.

cgf

Follow-Ups:
- Re: [Patch] Fixing the PROCESS_DUP_HANDLE security hole.
  - From: Pierre A. Humblet

References:
- [Patch] Fixing the PROCESS_DUP_HANDLE security hole.
  - From: Pierre A. Humblet

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]