fix: add setuid bit to necessary binaries so regular users can run them (#5573)
This commit is contained in:
Tobias Brick
GitHub
parent
4860181f7a
commit
d80ac5964f
|
|
@ -1,7 +1,7 @@
|
|||
Summary: Programs for handling passwords in a secure way
|
||||
Name: shadow-utils
|
||||
Version: 4.9
|
||||
Release: 11%{?dist}
|
||||
Release: 12%{?dist}
|
||||
License: BSD
|
||||
Vendor: Microsoft Corporation
|
||||
Distribution: Mariner
|
||||
|
|
@ -163,7 +163,7 @@ chmod 000 %{_sysconfdir}/shadow
|
|||
%{_bindir}/*
|
||||
%{_sbindir}/*
|
||||
%{_mandir}/*
|
||||
%attr(0755,root,root) /bin/passwd
|
||||
%attr(4755,root,root) /bin/passwd
|
||||
%config(noreplace) %{_sysconfdir}/pam.d/*
|
||||
%attr(0000,root,root) %config(noreplace,missingok) %ghost %{_sysconfdir}/shadow
|
||||
|
||||
|
|
@ -176,8 +176,11 @@ chmod 000 %{_sysconfdir}/shadow
|
|||
%{_libdir}/libsubid.so
|
||||
|
||||
%changelog
|
||||
* Wed May 24 2023 Tobias Brick <tobiasb@microsoft.com> - 4.9-12
|
||||
- Add SETUID bit to passwd binary
|
||||
|
||||
* Mon Jul 18 2022 Minghe Ren <mingheren@microsoft.com> - 4.9-11
|
||||
- Update login-defs, system-auth, passwd to improve security
|
||||
- Update login-defs, system-auth, passwd to improve security
|
||||
|
||||
* Fri Jul 01 2022 Andrew Phelps <anphel@microsoft.com> - 4.9-10
|
||||
- Remove su binary which is now provided by util-linux
|
||||
|
|
|
|||
|
|
@ -1,7 +1,7 @@
|
|||
Summary: Utilities for file systems, consoles, partitions, and messages
|
||||
Name: util-linux
|
||||
Version: 2.37.4
|
||||
Release: 5%{?dist}
|
||||
Release: 6%{?dist}
|
||||
License: GPLv2+
|
||||
Vendor: Microsoft Corporation
|
||||
Distribution: Mariner
|
||||
|
|
@ -113,8 +113,8 @@ rm -rf %{buildroot}/lib/systemd/system
|
|||
%dir %{_prefix}%{_var}/run/uuidd
|
||||
%dir %{_sharedstatedir}/libuuid
|
||||
/bin/*
|
||||
%attr(0755,root,root) /bin/mount
|
||||
%attr(0755,root,root) /bin/umount
|
||||
%attr(4755,root,root) /bin/mount
|
||||
%attr(4755,root,root) /bin/umount
|
||||
/sbin/*
|
||||
%{_bindir}/*
|
||||
%{_sbindir}/*
|
||||
|
|
@ -148,6 +148,9 @@ rm -rf %{buildroot}/lib/systemd/system
|
|||
%{_mandir}/man3/*
|
||||
|
||||
%changelog
|
||||
* Wed May 24 2023 Tobias Brick <tobiasb@microsoft.com> - 2.37.4-6
|
||||
- Add SETUID bit to mount and umount.
|
||||
|
||||
* Mon Feb 06 2023 Mitch Zhu <mitchzhu@microsoft.com> - 2.37.4-5
|
||||
- Add patch to prevent cdrom probe on Azure VMs
|
||||
|
||||
|
|
|
|||
|
|
@ -66,9 +66,9 @@ make-4.3-2.cm2.aarch64.rpm
|
|||
patch-2.7.6-7.cm2.aarch64.rpm
|
||||
libcap-ng-0.8.2-2.cm2.aarch64.rpm
|
||||
libcap-ng-devel-0.8.2-2.cm2.aarch64.rpm
|
||||
util-linux-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-devel-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-libs-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-2.37.4-6.cm2.aarch64.rpm
|
||||
util-linux-devel-2.37.4-6.cm2.aarch64.rpm
|
||||
util-linux-libs-2.37.4-6.cm2.aarch64.rpm
|
||||
tar-1.34-1.cm2.aarch64.rpm
|
||||
xz-5.2.5-1.cm2.aarch64.rpm
|
||||
xz-devel-5.2.5-1.cm2.aarch64.rpm
|
||||
|
|
|
|||
|
|
@ -66,9 +66,9 @@ make-4.3-2.cm2.x86_64.rpm
|
|||
patch-2.7.6-7.cm2.x86_64.rpm
|
||||
libcap-ng-0.8.2-2.cm2.x86_64.rpm
|
||||
libcap-ng-devel-0.8.2-2.cm2.x86_64.rpm
|
||||
util-linux-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-devel-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-libs-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-2.37.4-6.cm2.x86_64.rpm
|
||||
util-linux-devel-2.37.4-6.cm2.x86_64.rpm
|
||||
util-linux-libs-2.37.4-6.cm2.x86_64.rpm
|
||||
tar-1.34-1.cm2.x86_64.rpm
|
||||
xz-5.2.5-1.cm2.x86_64.rpm
|
||||
xz-devel-5.2.5-1.cm2.x86_64.rpm
|
||||
|
|
|
|||
|
|
@ -568,11 +568,11 @@ texinfo-6.8-1.cm2.aarch64.rpm
|
|||
texinfo-debuginfo-6.8-1.cm2.aarch64.rpm
|
||||
unzip-6.0-20.cm2.aarch64.rpm
|
||||
unzip-debuginfo-6.0-20.cm2.aarch64.rpm
|
||||
util-linux-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-libs-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-debuginfo-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-devel-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-lang-2.37.4-5.cm2.aarch64.rpm
|
||||
util-linux-2.37.4-6.cm2.aarch64.rpm
|
||||
util-linux-libs-2.37.4-6.cm2.aarch64.rpm
|
||||
util-linux-debuginfo-2.37.4-6.cm2.aarch64.rpm
|
||||
util-linux-devel-2.37.4-6.cm2.aarch64.rpm
|
||||
util-linux-lang-2.37.4-6.cm2.aarch64.rpm
|
||||
which-2.21-8.cm2.aarch64.rpm
|
||||
which-debuginfo-2.21-8.cm2.aarch64.rpm
|
||||
xz-5.2.5-1.cm2.aarch64.rpm
|
||||
|
|
|
|||
|
|
@ -568,11 +568,11 @@ texinfo-6.8-1.cm2.x86_64.rpm
|
|||
texinfo-debuginfo-6.8-1.cm2.x86_64.rpm
|
||||
unzip-6.0-20.cm2.x86_64.rpm
|
||||
unzip-debuginfo-6.0-20.cm2.x86_64.rpm
|
||||
util-linux-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-libs-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-debuginfo-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-devel-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-lang-2.37.4-5.cm2.x86_64.rpm
|
||||
util-linux-2.37.4-6.cm2.x86_64.rpm
|
||||
util-linux-libs-2.37.4-6.cm2.x86_64.rpm
|
||||
util-linux-debuginfo-2.37.4-6.cm2.x86_64.rpm
|
||||
util-linux-devel-2.37.4-6.cm2.x86_64.rpm
|
||||
util-linux-lang-2.37.4-6.cm2.x86_64.rpm
|
||||
which-2.21-8.cm2.x86_64.rpm
|
||||
which-debuginfo-2.21-8.cm2.x86_64.rpm
|
||||
xz-5.2.5-1.cm2.x86_64.rpm
|
||||
|
|
|
|||
Loading…
Reference in New Issue