Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 95649

Summary: 64-bit ptrace() potential LocalRoot (CAN-2005-1763)
Product: Gentoo Security Reporter: Thierry Carrez (RETIRED) <koon>
Component: KernelAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal CC: kang, security-kernel
Priority: High    
Version: unspecified   
Hardware: All   
OS: Other   
Whiteboard: [linux < 2.6.11.12]
Package list:
Runtime testing required: ---

Description Thierry Carrez (RETIRED) gentoo-dev 2005-06-10 02:14:49 UTC 
From SuSE latest:

x86_64-ptrace-overflow - 2.6 only
An overflow in the x86-64 ptrace code allowed local users to
write a few bytes into kernel memory pages they normally
shouldn't have access to (CAN-2005-1763).

http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=c4d1fcf3a2ea89b6d6221fa8b4588c77aff50995
Comment 1 Daniel Drake (RETIRED) gentoo-dev 2005-06-13 14:11:33 UTC 
Fixed upstream in 2.6.11.12

Fixed in genpatches 2.6.11-14
Fixed in gentoo-sources-2.6.11-r11
Comment 2 Tim Yamin (RETIRED) gentoo-dev 2005-11-26 03:27:41 UTC 
All fixed, closing.