Skip to content

Commit

Permalink
fix: 修复 deepin-system-monitor漏洞
Browse files Browse the repository at this point in the history 
QT通过platformpluginpath插件对具有cap_sys_ptrace的程序提权为root

Log:  修复对具有cap_sys_ptrace的程序提权为root漏洞

Bug: https://pms.uniontech.com/bug-view-239329.html
  • Loading branch information
@jeffshuai @deepin-bot
jeffshuai authored and deepin-bot[bot] committed Jan 18, 2024
1 parent c13a28b commit 103d18d
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion debian/postinst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ set -e

if [ "$1" = configure ]; then
if command -v setcap > /dev/null; then
if setcap cap_net_raw,cap_dac_read_search,cap_sys_ptrace+ep /usr/bin/deepin-system-monitor;then
if setcap cap_net_raw,cap_dac_read_search+ep /usr/bin/deepin-system-monitor;then
chmod u-s /usr/bin/deepin-system-monitor
else
echo "Setcap failed, falling back to setuid" >&2
Expand Down

0 comments on commit 103d18d

Please sign in to comment.