The order of operations in the patch is incorrect; the suid_dumpable
flag should be set _after_ the core pattern pipe has been set.
This is incorrect:
+ echo 2 > /proc/sys/fs/suid_dumpable
echo "|/usr/share/apport/apport %p %s %c" > /proc/sys/kernel/core_pattern
It should be the other way around.
Teardown is in the correct order.
This was discovered in Saucy via kernel log messages:
[ 9.366329] Unsafe core_pattern used with suid_dumpable=2. Pipe
handler or fully qualified core dump path required.
Thanks
** Tags removed: verification-needed
** Tags added: verification-failed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1194541
Title:
Create core dumps for setuid binaries
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1194541/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
