[src/netbsd-7]: src/doc tickets 860 and 861

[bouyer <bouyer%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/90980fb67056
branches:  netbsd-7
changeset: 799452:90980fb67056
user:      bouyer <bouyer%NetBSD.org@localhost>
date:      Wed Jul 01 07:30:55 2015 +0000

description:
tickets 860 and 861

diffstat:

 doc/CHANGES-7.0 |  27 ++++++++++++++++++++++++++-
 1 files changed, 26 insertions(+), 1 deletions(-)

diffs (38 lines):

diff -r 9996fb384bf8 -r 90980fb67056 doc/CHANGES-7.0
--- a/doc/CHANGES-7.0   Wed Jul 01 07:30:15 2015 +0000
+++ b/doc/CHANGES-7.0   Wed Jul 01 07:30:55 2015 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-7.0,v 1.1.2.334 2015/06/29 17:27:13 snj Exp $
+# $NetBSD: CHANGES-7.0,v 1.1.2.335 2015/07/01 07:30:55 bouyer Exp $
 
 A complete list of changes from the initial NetBSD 7.0 branch on 11 Aug 2014
 until the 7.0 release:
@@ -32183,3 +32183,28 @@
        recover simply copies the existing header over the missing one.
        [jnemeth, ticket #847]
 
+usr.bin/calendar/calendar.c                    1.51
+
+       Correct privilege handling problems in calendar -a (which runs as root
+       from /etc/daily); do not exec other programs while the real uid is
+       still 0.
+
+       Also, clear the supplementary groups list up front and call initgroups
+       when becoming another user, to avoid leaking any extra group
+       privileges that we might have.
+
+       And finally, don't silently ignore errors changing uid and gid; those
+       are serious if they happen.
+       [dholland, ticket #860]
+
+usr.bin/calendar/calendar.c                    1.52
+
+       Repair accidental regression in -r1.49: for -a mode, don't allow
+       calendars to be other than regular files unless the -x option is in
+       effect.
+
+       (If not in -a mode, we're running purely as the user whose calendar it
+       is and if they want to DoS themselves with named pipes it's their own
+       lookout.)
+       [dholland, ticket #861]
+