Created attachment 181865 [details]
* A race condition was found in the way su handled the management of child
processes. A local authenticated attacker could use this flaw to kill other
processes with root privileges under specific conditions. (CVE-2017-2616)
Red Hat would like to thank Tobias Stöckmann for reporting this issue.
* The "findmnt --target <path>" command prints all file systems where the mount
point directory is <path>. Previously, when used in the chroot environment,
"findmnt --target <path>" incorrectly displayed all mount points. The command
has been fixed so that it now checks the mount point path and returns
information only for the relevant mount point. (BZ#1414481)
The port with patch applied builds fine for c7 and c7_64 on Poudriere with 10.3-RELEASE.
MFH because of security fix.
A commit references this bug:
Date: Fri May 26 10:49:21 UTC 2017
New revision: 441769
Update util-linux to 2.23.2-33.el7_3.2.
Submitted by: Piotr Kubaj <email@example.com>
We don't install su so the problem doesn't affect us.