Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 244352 - hardened x11-base xorg-server-1.5.2: stack smashing attack when alt key is pressed
Summary: hardened x11-base xorg-server-1.5.2: stack smashing attack when alt key is pr...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: [OLD] Unspecified (show other bugs)
Hardware: x86 Linux
: High critical (vote)
Assignee: Gentoo X packagers
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-10-25 18:21 UTC by karl
Modified: 2010-06-24 01:51 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments
emerge --info (emerge-info,9.46 KB, text/plain)
2008-10-25 18:32 UTC, karl
Details
emerge --info (emerge.info,3.11 KB, text/plain)
2009-04-15 20:40 UTC, Jared Hancock
Details

Note You need to log in before you can comment on or make changes to this bug.
Description karl 2008-10-25 18:21:44 UTC
After xinit, as soon as I strike the 'alt' key X is terminated due to stack smashing attack and the display and input is frozen until X is booted again.

Reproducible: Always

Steps to Reproduce:
1. Boot up Xorg
2. Strike ALT

Actual Results:  
Display and input freeze, X process ends.  Console output is:
*** stack smashing detected ***: X - terminated
X: stack smashing attack in function XkbHandleActions - terminated
Report to http:  bugs.gentoo.org 
xinit:  connection to X server lost.
XIO:  fatal IO error 11 (Resource temporarily unavailable) on X server ":0.0"
      after 203 requests (196 known processed) with 0 events remaining.

Expected Results:  
The alt key should have functioned normally.  I usually use it very often for whatever windowmanager I am using (evilwm or awesome).

I apologise for replacing all slashes with spaces in the package atom and url; I'm afraid my slash key is broken and elinks does not make pasting easy.

I have xorg-server-1.5.2 and xf86-input-keyboard-1.3.1 .  I rebuilt both after gcc-config'ing to hardenednossp, but the problem remained.
Comment 1 karl 2008-10-25 18:32:54 UTC
Created attachment 169850 [details]
emerge --info
Comment 2 Kari Hazzard 2008-12-06 12:56:31 UTC
This bug also occurs in xorg-server-1.4.2.

I imagine every version of xorg-server that uses the new ABI (1.4+) is probably affected by this bug.
Comment 3 zakalwe 2008-12-15 14:56:11 UTC
This is an old bug and is a problem with the old gcc 3.x ssp.  I hit it a long time ago and the paxteam debugged it.  gcc 4.2+ does not have this problem.  Build xorg without the ssp.
Comment 4 Jared Hancock 2009-04-15 20:40:29 UTC
I can concur that this problem still exists in 1.5.3-r5 on a hardened 2008.0 build. Rebuilding xorg-server with the i686-pc-linux-gnu-3.4.6-hardenednossp compiler fixed the issue and X now runs without a hitch.

If this is historic and well known, why isn't it in the Xorg 1.5 upgrade documentation?
Comment 5 Jared Hancock 2009-04-15 20:40:54 UTC
Created attachment 188496 [details]
emerge --info
Comment 6 Gordon Malm (RETIRED) gentoo-dev 2009-04-16 01:05:18 UTC
Fixed in portage via filtering SSP for <GCC4.