[OE-core] [PATCH 1/1] lsof: clear setuid
kai.kang at windriver.com
kai.kang at windriver.com
Sat May 27 07:45:03 UTC 2017
From: Kai Kang <kai.kang at windriver.com>
Having 'lsof' as a +s (setuid) binary could lead to security issues if
a compromise in the binary is found. It is better that it be -s by
default as a precaution.
Signed-off-by: Kai Kang <kai.kang at windriver.com>
---
meta/recipes-extended/lsof/lsof_4.89.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-extended/lsof/lsof_4.89.bb b/meta/recipes-extended/lsof/lsof_4.89.bb
index b732cf0..650b34c 100644
--- a/meta/recipes-extended/lsof/lsof_4.89.bb
+++ b/meta/recipes-extended/lsof/lsof_4.89.bb
@@ -53,6 +53,6 @@ do_compile () {
do_install () {
install -d ${D}${sbindir} ${D}${mandir}/man8
- install -m 4755 lsof ${D}${sbindir}/lsof
+ install -m 0755 lsof ${D}${sbindir}/lsof
install -m 0644 lsof.8 ${D}${mandir}/man8/lsof.8
}
--
2.10.1
More information about the Openembedded-core
mailing list