Open jan-cerny opened 6 years ago
There is a security-related Covscan error related to this "mid-flight" call.
I believe this was even reported as a part of a past Covscan review.
@jan-cerny I remember you fixing this bug, but I can't find the PR. Is it just my imagination?
There was e299045bca54a897d0a47a3c2a88c212bf47f5da which moved this code block to src/OVAL/probes/probe/worker.c But chdir
is still called before chroot
. So I think it isn't fixed.
We call
dI
afterchroot()
but before callingchdir("/")
.