CVSROOT: /cvs Module name: src Changes by: [email protected] 2019/12/08 21:50:42
Modified files:
usr.bin/su : Tag: OPENBSD_6_6 su.c
Log message:
In -L (loop) mode, reset the login class each time through the loop.
Otherwise, it is possible to log in with another user's login class.
Fixes CVE-2019-19519. OK deraadt@ markus@
OpenBSD 6.6 errata 012
