787579 – unchecked return value of getpwuid() in policycoreutils-rhat.patch

Bug 787579 - unchecked return value of getpwuid() in policycoreutils-rhat.patch

Summary: unchecked return value of getpwuid() in policycoreutils-rhat.patch

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	policycoreutils
Sub Component:
Version:	6.1
Hardware:	All
OS:	Linux
Priority:	high
Severity:	low
Target Milestone:	rc
Target Release:	---
Assignee:	Daniel Walsh
QA Contact:	Milos Malik
Docs Contact:
URL:
Whiteboard:
Depends On:	684015
Blocks:
TreeView+	depends on / blocked

Reported:	2012-02-06 08:15 UTC by RHEL Program Management
Modified:	2012-02-14 21:42 UTC (History)
CC List:	7 users (show)
Fixed In Version:	policycoreutils-2.0.83-19.20.el6_2
Doc Type:	Bug Fix
Doc Text:	The missing exit(1) function call in the underlying code of the sepolgen-ifgen utility could cause the restorecond daemon to access already freed memory when retrieving user's information. This would cause restorecond to terminate unexpectedly with a segmentation fault. With this update, restorecond has been modified to check the return value of the getpwuid() function to avoid this situation.
Clone Of:
Environment:
Last Closed:	2012-02-14 21:42:04 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2012:0134	0	normal	SHIPPED_LIVE	policycoreutils bug fix update	2012-02-15 02:41:25 UTC

Description RHEL Program Management 2012-02-06 08:15:14 UTC

This bug has been copied from bug #684015 and has been proposed
to be backported to 6.2 z-stream (EUS).

Comment 4 Daniel Walsh 2012-02-06 16:11:43 UTC

Fixed in policycoreutils-2.0.83-19.20.el6_2

Comment 7 Miroslav Svoboda 2012-02-14 17:50:43 UTC

    Technical note added. If any revisions are required, please edit the "Technical Notes" field
    accordingly. All revisions will be proofread by the Engineering Content Services team.
    
    New Contents:
The missing exit(1) function call in the underlying code of the sepolgen-ifgen utility could cause the restorecond daemon to access already freed memory when retrieving user's information. This would cause restorecond to terminate unexpectedly with a segmentation fault. With this update, restorecond has been modified to check the return value of the getpwuid() function to avoid this situation.

Comment 8 errata-xmlrpc 2012-02-14 21:42:04 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2012-0134.html

Note You need to log in before you can comment on or make changes to this bug.