Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
Mesosphere Sprint 47, Mesosphere Sprint 48, Mesosphere Sprint 50
-
3
Description
Currently, parts of code in Mesos check the root privileges using os::user() to compare to "root", which is not sufficient, since it compares the real user. When people change the mesos binary by 'setuid root', the process may not have the right permission to execute.
We should check the effective user id instead in our code.