Summary: | Baselayout-1.11.12 incorrectly mounts /dev noexec | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Lachlan Pease <predatory.kangaroo> |
Component: | [OLD] baselayout | Assignee: | Gentoo's Team for Core System packages <base-system> |
Status: | RESOLVED FIXED | ||
Severity: | critical | CC: | christoph.gysin, iyosifov, jemelton, krueger, matteo-ml, mk, mkashouty, pageexec, sebastian, tdi |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | x86 | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Lachlan Pease
2005-05-17 07:14:56 UTC
Followup: After more careful searching, the following bug seems to address the same (though without a fix): 92856 *** Bug 92856 has been marked as a duplicate of this bug. *** *** Bug 92928 has been marked as a duplicate of this bug. *** thanks Lachlan for the research & fix ... this bug left me scratching my head ;) added baselayout-1.11.12-r1 --- sbin/rc +++ sbin/rc @@ -260,7 +260,8 @@ else mntcmd="ramfs" fi - try mount -n -t ${mntcmd} udev /dev -o noexec,nosuid,mode=0755 + # many video drivers require exec access in /dev #92921 + try mount -n -t ${mntcmd} udev /dev -o exec,nosuid,mode=0755 fi eend $? *** Bug 92905 has been marked as a duplicate of this bug. *** *** Bug 92975 has been marked as a duplicate of this bug. *** *** Bug 93050 has been marked as a duplicate of this bug. *** *** Bug 93064 has been marked as a duplicate of this bug. *** sorry for chiming in this late, but i just ran across this noexec /dev issue, as in, it works here and i'd like to know if it's still a problem with current X.org X-7.x or not. in case there're particular drivers that still want (and actually need) to mmap /dev/mem with PROT_EXEC, i'd like to know about them. (In reply to comment #9) > sorry for chiming in this late, but i just ran across this noexec /dev > issue, as in, it works here and i'd like to know if it's still a problem > with current X.org X-7.x or not. in case there're particular drivers that > still want (and actually need) to mmap /dev/mem with PROT_EXEC, i'd like to > know about them. Hi, what is the current status of this issue? Does GRKERNSEC_KMEM still allow mapping /dev/mem with PROT_EXEC? Thanks. |