projects / platform / core / appfw / pkgmgr-server.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ffda75a) | patch
Make CAP_DAC_OVERRIDE inheritable for using xdelta3 31/113731/2
authorSangyoon Jang <s89.jang@samsung.com>
Wed, 8 Feb 2017 12:34:32 +0000 (21:34 +0900)
committerjongmyeong ko <jongmyeong.ko@samsung.com>
Wed, 8 Feb 2017 12:39:58 +0000 (04:39 -0800)
commit2051bdd5e4c15b29833502f08589d43ea457f03b
tree16f581e32f7b5a4b5acdcfd23f764d1c5ba1243atree | snapshot
parentffda75a93105b140c97e3c09c9a70e4dcaf5f653commit | diff
Make CAP_DAC_OVERRIDE inheritable for using xdelta3

Currently, xdelta3 has CAP_DAC_OVERRIDE itself by file capability.
This is security hole, because attacker can modify any files using
xdelta3. To prevent this problem, make xdelta3 have CAP_DAC_OVERRIDE
only by inheriting from server.

Change-Id: I76f9416cff0c8b2e54c18093c162f6044c399245
Signed-off-by: Sangyoon Jang <s89.jang@samsung.com>
package-manager.service.in diff | blob | history
Domain: App Framework / Application Installer;