79633 – ia64 ptrace corner cases (Vendor-Sec)

Bug 79633 - ia64 ptrace corner cases (Vendor-Sec)

Summary: ia64 ptrace corner cases (Vendor-Sec)

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All All

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	CONFIDENTIAL
Keywords:

Depends on:
Blocks:

Reported:	2005-01-26 13:17 UTC by Sune Kloppenborg Jeppesen (RETIRED)
Modified:	2006-12-27 01:18 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2005-01-26 13:17:32 UTC

> Please note that this patch:
> 
>  http://lia64.bkbits.net:8080/linux-ia64-release-2.6.11/cset@41f2d1eePludGYyb1yOmGaW6Iois8Q
> 
> is a critical security fix which plugs a hole which allowed a local
> user to crash a machine (confirmed) or perhaps gain root privileges
> (unconfirmed).  In other words, please make sure your favorite distro
> doesn't miss out on this one...
> 
> Unfortunately, security issues seem to come in clusters and there is
> another one pending related to the kernel unwinder.  I'll send a
> pointer once there is a final patch.

Comment 1 Tim Yamin (RETIRED) gentoo-dev

2005-07-26 13:27:44 UTC

Not affected on this - we don't use 2.4 on IA64 and 2.6.11 vanilla-sources and
2.6.12 gentoo-sources are stable which both aren't affected by this. Closing bug.