ignore TERMINFO and HOME only if setuid/setgid/capability

This allows the root user to have its own private terminfo database, but still prevent setuid binaries from using untrusted terminfos.
2023-08-22 09:17:15 +02:00 · 2023-08-22 09:17:15 +02:00 · cf5782b63e
commit cf5782b63e
parent c3633ddaf9
1 changed files with 1 additions and 1 deletions
--- a/ncurses.spec
+++ b/ncurses.spec
@ -128,7 +128,7 @@ common_options="\
    --enable-pc-files \
    --enable-xmc-glitch \
    --disable-root-access \
-    --disable-root-environ \
+    --disable-setuid-environ \
    --disable-stripping \
    --disable-wattr-macros \
    --with-cxx-shared \