Bug#559107: marked as done (Local root exploit in rtld)
Your message dated Wed, 2 Dec 2009 09:25:58 +0100 (CET)
with message-id <Pine.LNX.4.62.0912020917460.29205@sci.felk.cvut.cz>
and subject line Re: Bug#559107: Local root exploit in rtld
has caused the Debian Bug report #559107,
regarding Local root exploit in rtld
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
559107: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559107
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: Local root exploit in rtld
- From: Moritz Muehlenhoff <jmm@debian.org>
- Date: Tue, 01 Dec 2009 23:26:29 +0100
- Message-id: <20091201222629.4015.92086.reportbug@localhost.localdomain>
Package: kfreebsd-7
Severity: grave
Tags: security
http://seclists.org/fulldisclosure/2009/Nov/371
Colin Percival posted a preliminary patch, a full advisory is announced
for tomorrow.
I suppose this affects Debian/KFreeBSD?
One a side note, what's the status of CVE-2009-114[678] ? #483152 was
filed for it, but it got closed without a solution AFAICT.
Cheers,
Moritz
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.31-1-686 (SMP w/1 CPU core)
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash
--- End Message ---
--- Begin Message ---
- To: Moritz Muehlenhoff <jmm@debian.org>, close-559107@bugs.debian.org
- Subject: Re: Bug#559107: Local root exploit in rtld
- From: Petr Salinger <Petr.Salinger@seznam.cz>
- Date: Wed, 2 Dec 2009 09:25:58 +0100 (CET)
- Message-id: <Pine.LNX.4.62.0912020917460.29205@sci.felk.cvut.cz>
- In-reply-to: <20091201222629.4015.92086.reportbug@localhost.localdomain>
- References: <20091201222629.4015.92086.reportbug@localhost.localdomain>
http://seclists.org/fulldisclosure/2009/Nov/371
Colin Percival posted a preliminary patch, a full advisory is announced
for tomorrow.
I suppose this affects Debian/KFreeBSD?
No, the rtld (/lib/ld*.so) comes from eglibc, not from kernel source.
Petr
--- End Message ---
Reply to: