diff options
author | Michael Catanzaro <mcatanzaro@igalia.com> | 2019-04-13 13:57:36 -0500 |
---|---|---|
committer | Michael Catanzaro <mcatanzaro@igalia.com> | 2019-04-13 14:02:44 -0500 |
commit | e93ab93c33fc0fbbdb28e8014e6ca18791ed9896 (patch) | |
tree | 35433d1225072ebb96837abfabb85e478c9ea170 | |
parent | f2aca1689bfbe5afaab019f292693ad232faa8c1 (diff) | |
download | gnome-desktop-gnome-3-26.tar.gz |
thumbnailer: fix incomplete TIOCSTI filteringgnome-3-26
Fixes #112
See also: https://github.com/flatpak/flatpak/issues/2782
-rw-r--r-- | libgnome-desktop/gnome-desktop-thumbnail-script.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/libgnome-desktop/gnome-desktop-thumbnail-script.c b/libgnome-desktop/gnome-desktop-thumbnail-script.c index 99d83ac2..f61bf59d 100644 --- a/libgnome-desktop/gnome-desktop-thumbnail-script.c +++ b/libgnome-desktop/gnome-desktop-thumbnail-script.c @@ -333,7 +333,7 @@ setup_seccomp (GPtrArray *argv_array, {SCMP_SYS (clone), &SCMP_A0 (SCMP_CMP_MASKED_EQ, CLONE_NEWUSER, CLONE_NEWUSER)}, /* Don't allow faking input to the controlling tty (CVE-2017-5226) */ - {SCMP_SYS (ioctl), &SCMP_A1(SCMP_CMP_EQ, (int)TIOCSTI)}, + {SCMP_SYS (ioctl), &SCMP_A1(SCMP_CMP_MASKED_EQ, 0xFFFFFFFFu, (int)TIOCSTI)}, }; struct |