Summary: | dev-lang/python-3.5.2 requires disabled MPROTECT during install phase | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Attila Tóth <atoth> |
Component: | Hardened | Assignee: | The Gentoo Linux Hardened Team <hardened> |
Status: | RESOLVED INVALID | ||
Severity: | normal | CC: | pageexec, python |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Attila Tóth
2016-07-27 09:41:17 UTC
dev-lang/python-3.4 seems to work well without mprotect. It might be some python-3.5 module? (In reply to Attila Tóth from comment #1) > dev-lang/python-3.4 seems to work well without mprotect. > It might be some python-3.5 module? python-3.5.1-r2 and python-3.5.1-r3 are also affected. the question is what code wants to allocate rwx maps and for what purpose. can you extract and strace a failing command to see what the exact request is? also check that the failing program doesn't load any libraries with a bad GNU_STACK header. (In reply to PaX Team from comment #3) > the question is what code wants to allocate rwx maps and for what purpose. > can you extract and strace a failing command to see what the exact request > is? also check that the failing program doesn't load any libraries with a > bad GNU_STACK header. I'm having trouble reproducing the problem. Sending an email about some details. Reason was: toolchain generated binaries without GNU_STACK header. The issue is no longer present on my system and I cannot reproduce it. |