Bug#301135: marked as done (libc6: libacl/libcrypto/libasound all have PT_GNU_STACK enabled on them in glibc 2.3.4-1)
Your message dated Mon, 22 May 2006 09:04:49 +0200
with message-id <20060522070449.GA12316@henry.aurel32.net>
and subject line Bug#301135: libc6: libacl/libcrypto/libasound all have PT_GNU_STACK enabled on them in glibc 2.3.4-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: libc6: libacl/libcrypto/libasound all have PT_GNU_STACK enabled on them in glibc 2.3.4-1
- From: Brad Spengler <spender@grsecurity.net>
- Date: Wed, 23 Mar 2005 18:10:44 -0500
- Message-id: <200503232310.j2NNAilf022493@mayinga.bucknell.edu>
Package: libc6
Version: 2.3.4-1
Severity: important
libacl/libcrypto/libasound all have PT_GNU_STACK enabled on them in
glibc 2.3.4-1, making them request an executable stack when none is
needed. This severely breaks a PaX system and effectively backdoors
most applications on systems using exec-shield.
Here's the relevant readelf -e output for libacl. It would be wise for
debian to check all packages for these same kinds of problems now to
avoid causing lots of problems later when glibc 2.3.4 goes into
unstable. Since this problem causes security features to be silently
disabled in the case of exec-shield, it is a security issue in addition
to a large usability problem in the case of PaX.
Program Headers:
Type Offset VirtAddr PhysAddr FileSiz MemSiz Flg Align
LOAD 0x000000 0x00000000 0x00000000 0x051b6 0x051b6 R E 0x1000
LOAD 0x0051b8 0x000061b8 0x000061b8 0x001dc 0x001fc RW 0x1000
DYNAMIC 0x0051cc 0x000061cc 0x000061cc 0x000e0 0x000e0 RW 0x4
STACK 0x000000 0x00000000 0x00000000 0x00000 0x00000 RWE 0x4
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.11.5-grsec
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages libc6 depends on:
ii libdb1-compat 2.1.3-7 The Berkeley database routines [gl
-- no debconf information
--- End Message ---
--- Begin Message ---
- To: Brad Spengler <spender@grsecurity.net>, 301135-done@bugs.debian.org
- Subject: Re: Bug#301135: libc6: libacl/libcrypto/libasound all have PT_GNU_STACK enabled on them in glibc 2.3.4-1
- From: Aurelien Jarno <aurelien@aurel32.net>
- Date: Mon, 22 May 2006 09:04:49 +0200
- Message-id: <20060522070449.GA12316@henry.aurel32.net>
- In-reply-to: <200503232310.j2NNAilf022493@mayinga.bucknell.edu>
- References: <200503232310.j2NNAilf022493@mayinga.bucknell.edu>
libacl, libcrypto and libasound do not have an executable stack anymore.
Closing the bug.
--
.''`. Aurelien Jarno | GPG: 1024D/F1BCDB73
: :' : Debian GNU/Linux developer | Electrical Engineer
`. `' aurel32@debian.org | aurelien@aurel32.net
`- people.debian.org/~aurel32 | www.aurel32.net
--- End Message ---
Reply to: