Bug 144134 (IT_62049)
| Summary: | CAN-2004-1235 isec.pl uselib() privilege escalation | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 3 | Reporter: | Josh Bressers <bressers> |
| Component: | kernel | Assignee: | Dave Anderson <anderson> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | medium | ||
| Version: | 3.0 | CC: | chrismcc, eric.eisenhart, harkness, jos, jparadis, k.georgiou, lwhatley, milan.kerslager, mjc, mollo, pere, peterm, petrides, riel, security-response-team, tao, trondham |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | reported=20041222,public=20050106,impact=important | ||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2005-01-18 23:52:47 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Josh Bressers
2005-01-04 19:36:00 UTC
Attachment 109343 [details]
Contains the patch for this issue.
I've built a static version the program using gcc 2.2.5 (which doesn't require the old_esp removal), and when run on a RHEL3 kernel, it just causes a segmentation violation. I've run Mark's version as well, and it also only causes a segmentation violation. When can we expect an official kernel from RedHat fixing this issue? To make it easy when using search through Bugzilla, we should note, that this is a uselib() privilege escalation problem (comment #1 has a typo) or sys_uselib() if you want. See: http://isec.pl/vulnerabilities/isec-0021-uselib.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1235 http://lwn.net/Articles/118223/ Looking forward for RHSA... According to Andrew Morton this seems to be less risky than we thought: http://marc.theaimsgroup.com/?l=linux-kernel&m=110513618706433&w=2 See the the previous and the next from Alan from this thread too. Maybe this is the reason why there is no RHSA yet? A fix for this problem has just been committed to the RHEL3 E5 patch pool this evening (in kernel version 2.4.21-27.0.2.EL). >> According to Andrew Morton this seems to be less risky than we thought
If I read that correctly, the lkml post is NOT about the uselib issue
(what this bug is about), but references other issues that came up at
the same time (same day?)
The fix for this problem has also been committed to the RHEL3 U5 patch pool this evening (in kernel version 2.4.21-27.8.EL). any word on when the 2.4.21-27.0.2.EL Errata will be released? or a RH/people pre release link Probably later tonight. Sorry for the delay. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-043.html |