From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Andy Moreton <andrewjmoreton@gmail.com>
Newsgroups: gmane.emacs.bugs
Subject: bug#12632: file permissions checking mishandled when setuid
Date: Wed, 24 Oct 2012 00:15:09 +0100
Message-ID: <82r4oo6arm.fsf@gmail.com>
References: <5078CAB6.7020509@cs.ucla.edu> <83d30j3wqg.fsf@gnu.org>
	<507CF802.6000305@cs.ucla.edu> <83a9vm4bmv.fsf@gnu.org>
	<50818763.80501@cs.ucla.edu> <83wqymz4me.fsf@gnu.org>
	<5081A1DF.9000009@cs.ucla.edu> <aiipa6uvso.fsf@fencepost.gnu.org>
	<5081ABD6.9060002@cs.ucla.edu> <23r4osd2f9.fsf@fencepost.gnu.org>
	<50836366.6080600@cs.ucla.edu> <odlif0v4e3.fsf@fencepost.gnu.org>
	<5084E1B2.2020105@cs.ucla.edu> <83ipa2ctl2.fsf@gnu.org>
	<5085AD9E.7040701@cs.ucla.edu> <838vaycj65.fsf@gnu.org>
	<5085BB01.2030402@cs.ucla.edu> <836261df2p.fsf@gnu.org>
	<50862604.30208@cs.ucla.edu> <83vce1b0ja.fsf@gnu.org>
	<5086EF99.6060008@cs.ucla.edu>
NNTP-Posting-Host: plane.gmane.org
Mime-Version: 1.0
Content-Type: text/plain
X-Trace: ger.gmane.org 1351034171 19875 80.91.229.3 (23 Oct 2012 23:16:11 GMT)
X-Complaints-To: usenet@ger.gmane.org
NNTP-Posting-Date: Tue, 23 Oct 2012 23:16:11 +0000 (UTC)
To: 12632@debbugs.gnu.org
Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Wed Oct 24 01:16:19 2012
Return-path: <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>
Envelope-to: geb-bug-gnu-emacs@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by plane.gmane.org with esmtp (Exim 4.69)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1TQnhq-0002Uq-Vg
	for geb-bug-gnu-emacs@m.gmane.org; Wed, 24 Oct 2012 01:16:19 +0200
Original-Received: from localhost ([::1]:53628 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1TQnhj-0004a9-CX
	for geb-bug-gnu-emacs@m.gmane.org; Tue, 23 Oct 2012 19:16:11 -0400
Original-Received: from eggs.gnu.org ([208.118.235.92]:53184)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1TQnhg-0004a4-Ui
	for bug-gnu-emacs@gnu.org; Tue, 23 Oct 2012 19:16:09 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1TQnhf-0004iK-Om
	for bug-gnu-emacs@gnu.org; Tue, 23 Oct 2012 19:16:08 -0400
Original-Received: from debbugs.gnu.org ([140.186.70.43]:48086)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1TQnhf-0004iG-L7
	for bug-gnu-emacs@gnu.org; Tue, 23 Oct 2012 19:16:07 -0400
Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.72)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1TQnjV-0005Jp-SC
	for bug-gnu-emacs@gnu.org; Tue, 23 Oct 2012 19:18:01 -0400
X-Loop: help-debbugs@gnu.org
In-Reply-To: <5078CAB6.7020509@cs.ucla.edu>
Resent-From: Andy Moreton <andrewjmoreton@gmail.com>
Original-Sender: debbugs-submit-bounces@debbugs.gnu.org
Resent-CC: bug-gnu-emacs@gnu.org
Resent-Date: Tue, 23 Oct 2012 23:18:01 +0000
Resent-Message-ID: <handler.12632.B.135103425620407@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 12632
X-GNU-PR-Package: emacs
X-GNU-PR-Keywords: security patch
X-Debbugs-Original-To: bug-gnu-emacs@gnu.org
Original-Received: via spool by submit@debbugs.gnu.org id=B.135103425620407
	(code B ref -1); Tue, 23 Oct 2012 23:18:01 +0000
Original-Received: (at submit) by debbugs.gnu.org; 23 Oct 2012 23:17:36 +0000
Original-Received: from localhost ([127.0.0.1]:58337 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.72)
	(envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
	id 1TQnj4-0005J5-W5
	for submit@debbugs.gnu.org; Tue, 23 Oct 2012 19:17:36 -0400
Original-Received: from eggs.gnu.org ([208.118.235.92]:40029)
	by debbugs.gnu.org with esmtp (Exim 4.72)
	(envelope-from <geb-bug-gnu-emacs@m.gmane.org>) id 1TQnj2-0005Is-Ca
	for submit@debbugs.gnu.org; Tue, 23 Oct 2012 19:17:33 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <geb-bug-gnu-emacs@m.gmane.org>) id 1TQnh5-0004ZX-Q3
	for submit@debbugs.gnu.org; Tue, 23 Oct 2012 19:15:32 -0400
Original-Received: from lists.gnu.org ([208.118.235.17]:33570)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <geb-bug-gnu-emacs@m.gmane.org>) id 1TQnh5-0004ZT-MZ
	for submit@debbugs.gnu.org; Tue, 23 Oct 2012 19:15:31 -0400
Original-Received: from eggs.gnu.org ([208.118.235.92]:52902)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <geb-bug-gnu-emacs@m.gmane.org>) id 1TQnh4-0003hQ-I6
	for bug-gnu-emacs@gnu.org; Tue, 23 Oct 2012 19:15:31 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <geb-bug-gnu-emacs@m.gmane.org>) id 1TQnh3-0004X0-FB
	for bug-gnu-emacs@gnu.org; Tue, 23 Oct 2012 19:15:30 -0400
Original-Received: from plane.gmane.org ([80.91.229.3]:48292)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <geb-bug-gnu-emacs@m.gmane.org>) id 1TQnh3-0004US-8J
	for bug-gnu-emacs@gnu.org; Tue, 23 Oct 2012 19:15:29 -0400
Original-Received: from list by plane.gmane.org with local (Exim 4.69)
	(envelope-from <geb-bug-gnu-emacs@m.gmane.org>) id 1TQnh6-0001wE-QU
	for bug-gnu-emacs@gnu.org; Wed, 24 Oct 2012 01:15:32 +0200
Original-Received: from 82-69-64-228.dsl.in-addr.zen.co.uk ([82.69.64.228])
	by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
	id 1AlnuQ-0007hv-00
	for <bug-gnu-emacs@gnu.org>; Wed, 24 Oct 2012 01:15:32 +0200
Original-Received: from andrewjmoreton by 82-69-64-228.dsl.in-addr.zen.co.uk with local
	(Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00
	for <bug-gnu-emacs@gnu.org>; Wed, 24 Oct 2012 01:15:32 +0200
X-Injected-Via-Gmane: http://gmane.org/
Original-Lines: 22
Original-X-Complaints-To: usenet@ger.gmane.org
X-Gmane-NNTP-Posting-Host: 82-69-64-228.dsl.in-addr.zen.co.uk
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.2.50 (windows-nt)
Cancel-Lock: sha1:QdGNkwKMU+heOTmg95aL9frIoaM=
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
	recognized.
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 3)
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.13
Precedence: list
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 2)
X-Received-From: 140.186.70.43
X-BeenThere: bug-gnu-emacs@gnu.org
List-Id: "Bug reports for GNU Emacs,
	the Swiss army knife of text editors" <bug-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/bug-gnu-emacs>
List-Post: <mailto:bug-gnu-emacs@gnu.org>
List-Help: <mailto:bug-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=subscribe>
Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org
Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.bugs:65951
Archived-At: <http://permalink.gmane.org/gmane.emacs.bugs/65951>

On Tue 23 Oct 2012, Paul Eggert wrote:

> On 10/23/2012 09:44 AM, Eli Zaretskii wrote:
>> Others, like "//.", are downright dangerous, because "\\.\" begins a
>> device name on Windows.  With these arcana notoriously
>> under-documented by MS, it is anybody's guess what such names can do
>> in what APIs.
>
> OK, thanks for explaining: I did not know about that syntax,
> or about the behavior being undocumented and undefined.
> Also, come to think of it, there will be problems with
> drive prefixes.

FYI it is documented - see "Win32 Device Namespaces":
http://msdn.microsoft.com/en-us/library/windows/desktop/aa365247%28v=vs.85%29.aspx

Of course as Eli suggests, this documentation may not be the whole
story, as you still need to know which names and namespaces are
supported by a given API (and on which versions of Windows).

    AndyM