Summary: | ebuilds fail with sandbox violation with NIS installed due to libsandbox bug | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Seth Robertson <in-gentoo> |
Component: | New packages | Assignee: | Portage team <dev-portage> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | grubba, matt, pkasting |
Priority: | High | Keywords: | InVCS |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: | libsandbox patch |
Description
Seth Robertson
2004-07-24 18:15:18 UTC
Created attachment 36097 [details, diff]
libsandbox patch
A proposed patch which specifically allows known valid modifiers which may
appear in any order.
In the interest of full disclosure, I discovered that glibc stdio has even *MORE* undocumented usage of the mode string. They have this wierd ",css=" character set translation thingy. I did not fully track down what this does, but it appears to be some kind of internationalization/wide character set support. The patch I created does NOT handle this situation. It could be extended to do so, but that would require some more thought as to whether the css thingy could be exploited. Probably not, but you never know without looking. I have not seen any use of this, nor have I looked. I was just looking deeper into the function to track down another unrelated bug. *** Bug 55497 has been marked as a duplicate of this bug. *** *** Bug 60910 has been marked as a duplicate of this bug. *** Bug has been fixed and released in stable portages on or before 2.0.51-r2 |