[Full-disclosure] Multiple OS kernel insecure handling of stdio file descriptor

[Michele Cicciotti]

>  SP> The AIX Security Team can be reached at security-alert at austin.ibm.com.
>  SP> We have investigated this issue and AIX is not affected. A privileged
>  SP> process will not inherit closed file descriptors for stdio, stdout and
>  SP> stderr.
> well, but what is used for stdout if it's closed in the parent
> process just before fork(2) call?!

I don't know what's the case for AIX, but the typical fix for this vulnerability is to reopen stdout and stderr to /dev/null for setuid processes