From 2f6426a5433b4cd9026a51db1787bca66fa88252 Mon Sep 17 00:00:00 2001
From: Thomas Osterried <thomas@osterried.de>
Date: Thu, 18 Aug 2011 09:51:08 +0000
Subject: 	Fix for CVE-2011-2910: check return status of setuid(), ..

---
 ax25/axspawn.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'ax25/axspawn.c')

diff --git a/ax25/axspawn.c b/ax25/axspawn.c
index 544abea..a2b132b 100644
--- a/ax25/axspawn.c
+++ b/ax25/axspawn.c
@@ -1,6 +1,6 @@
 /*
  *
- * $Id: axspawn.c,v 1.24 2010/03/31 08:06:59 dl9sau Exp $
+ * $Id: axspawn.c,v 1.25 2011/08/18 09:51:08 dl9sau Exp $
  *
  * axspawn.c - run a program from ax25d.
  *
@@ -1693,7 +1693,8 @@ again:
                 pututline(&ut_line);
                 endutent();
 
-		setsid();
+		if (setsid() == -1)
+			exit(1);
 
                 chargc = 0;
                 envc = 0;
-- 
cgit v1.2.3