projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 6f05569)
package/iputils: drop setuid on arping
authorYann E. MORIN <yann.morin.1998@free.fr>
Thu, 1 Aug 2019 16:22:32 +0000 (18:22 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Thu, 1 Aug 2019 18:21:27 +0000 (20:21 +0200)
arping can be used for arp poisoning, so it should really not be setuid.

Reported-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Acked-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/iputils/iputils.mk patch | blob | history

diff --git a/package/iputils/iputils.mk b/package/iputils/iputils.mk
index b28222138f0c8b796519a5f249c77a3a37008101..7482bbdca1b63e4927e3ad13eaa77fb1ff7862d7 100644 (file)
--- a/package/iputils/iputils.mk
+++ b/package/iputils/iputils.mk
@@ -80,7 +80,7 @@ IPUTILS_POST_INSTALL_TARGET_HOOKS += IPUTILS_CREATE_PING6_SYMLINK
 # handle permissions ourselves
 IPUTILS_CONF_OPTS += -DNO_SETCAP_OR_SUID=true
 define IPUTILS_PERMISSIONS
-       /usr/sbin/arping      f 4755 0 0 - - - - -
+       /usr/sbin/arping      f  755 0 0 - - - - -
        /usr/bin/clockdiff    f 4755 0 0 - - - - -
        /bin/ping             f 4755 0 0 - - - - -
        /usr/bin/traceroute6  f 4755 0 0 - - - - -