Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Step:FrontRunner
sudo.27421
sudo-CVE-2023-22809.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File sudo-CVE-2023-22809.patch of Package sudo.27421
diff --git a/plugins/sudoers/editor.c b/plugins/sudoers/editor.c index a0cd63d..832e2ef 100644 --- a/plugins/sudoers/editor.c +++ b/plugins/sudoers/editor.c @@ -126,7 +126,7 @@ resolve_editor(const char *ed, size_t edlen, int nfiles, char **files, const char *tmp, *cp, *ep = NULL; const char *edend = ed + edlen; struct stat user_editor_sb; - int nargc; + int nargc = 0; debug_decl(resolve_editor, SUDOERS_DEBUG_UTIL); /* @@ -144,9 +144,7 @@ resolve_editor(const char *ed, size_t edlen, int nfiles, char **files, /* If we can't find the editor in the user's PATH, give up. */ if (find_path(editor, &editor_path, &user_editor_sb, getenv("PATH"), NULL, 0, allowlist) != FOUND) { - free(editor); - errno = ENOENT; - debug_return_str(NULL); + goto bad; } /* Count rest of arguments and allocate editor argv. */ @@ -166,6 +164,17 @@ resolve_editor(const char *ed, size_t edlen, int nfiles, char **files, nargv[nargc] = copy_arg(cp, ep - cp); if (nargv[nargc] == NULL) goto oom; + + /* + * We use "--" to separate the editor and arguments from the files + * to edit. The editor arguments themselves may not contain "--". + */ + if (strcmp(nargv[nargc], "--") == 0) { + sudo_warnx(U_("ignoring editor: %.*s"), (int)edlen, ed); + sudo_warnx("%s", U_("editor arguments may not contain \"--\"")); + errno = EINVAL; + goto bad; + } } if (nfiles != 0) { nargv[nargc++] = "--"; @@ -179,6 +188,7 @@ resolve_editor(const char *ed, size_t edlen, int nfiles, char **files, debug_return_str(editor_path); oom: sudo_warnx(U_("%s: %s"), __func__, U_("unable to allocate memory")); +bad: free(editor); free(editor_path); if (nargv != NULL) { diff --git a/plugins/sudoers/sudoers.c b/plugins/sudoers/sudoers.c index 20f760b..a66098e 100644 --- a/plugins/sudoers/sudoers.c +++ b/plugins/sudoers/sudoers.c @@ -726,19 +726,30 @@ sudoers_policy_main(int argc, char * const argv[], int pwflag, char *env_add[], if (ISSET(sudo_mode, MODE_EDIT)) { char **edit_argv; int edit_argc; - const char *env_editor; + const char *env_editor = NULL; free(safe_cmnd); safe_cmnd = find_editor(NewArgc - 1, NewArgv + 1, &edit_argc, &edit_argv, NULL, &env_editor, false); if (safe_cmnd == NULL) { - if (errno != ENOENT) - goto done; + switch (errno) { + case ENOENT: audit_failure(NewArgv, N_("%s: command not found"), - env_editor ? env_editor : def_editor); + env_editor ? env_editor : def_editor); sudo_warnx(U_("%s: command not found"), - env_editor ? env_editor : def_editor); + env_editor ? env_editor : def_editor); goto bad; + case EINVAL: + if (def_env_editor && env_editor != NULL) { + /* User tried to do something funny with the editor. */ + log_warningx(SLOG_NO_STDERR|SLOG_AUDIT|SLOG_SEND_MAIL, + "invalid user-specified editor: %s", env_editor); + goto bad; + } + FALLTHROUGH; + default: + goto done; + } } sudoers_gc_add(GC_VECTOR, edit_argv); NewArgv = edit_argv; diff --git a/plugins/sudoers/visudo.c b/plugins/sudoers/visudo.c index 6fd3c83..d4d9d79 100644 --- a/plugins/sudoers/visudo.c +++ b/plugins/sudoers/visudo.c @@ -303,7 +303,7 @@ static char * get_editor(int *editor_argc, char ***editor_argv) { char *editor_path = NULL, **allowlist = NULL; - const char *env_editor; + const char *env_editor = NULL; static char *files[] = { "+1", "sudoers" }; unsigned int allowlist_len = 0; debug_decl(get_editor, SUDOERS_DEBUG_UTIL); @@ -337,7 +337,11 @@ get_editor(int *editor_argc, char ***editor_argv) if (editor_path == NULL) { if (def_env_editor && env_editor != NULL) { /* We are honoring $EDITOR so this is a fatal error. */ - sudo_fatalx(U_("specified editor (%s) doesn't exist"), env_editor); + if (errno == ENOENT) { + sudo_warnx(U_("specified editor (%s) doesn't exist"), + env_editor); + } + exit(EXIT_FAILURE); } sudo_fatalx(U_("no editor found (editor path = %s)"), def_editor); }
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor