On Tue, Nov 23, 2021 at 03:41:14PM -0500, Robbie Harwood <rharw...@redhat.com>
wrote:
> ptytty::drop_privileges() set gid, but did not clear the supplementary
> group list. Reset them to be appropriate for the target user using
> initgroups(). Reported by rpmlint.
Hi!
This looks like a bug/shortcoming in rpmlint: the code does not switch
users or "set the gid" or anything like that, it is merely dropping extra
privileges the binary might have.
We most certainly do not want to change any supplementary groups here,
which at best might go undetected, and at worst breaks things as we
overwrite the groups the user wants us to have.
Greetings,
Marc
--
The choice of a Deliantra, the free code+content MORPG
-----==- _GNU_ http://www.deliantra.net
----==-- _ generation
---==---(_)__ __ ____ __ Marc Lehmann
--==---/ / _ \/ // /\ \/ / schm...@schmorp.de
-=====/_/_//_/\_,_/ /_/\_\
_______________________________________________
rxvt-unicode mailing list
rxvt-unicode@lists.schmorp.de
http://lists.schmorp.de/mailman/listinfo/rxvt-unicode
