Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications

To: Aurelien Jarno <aurelien@aurel32.net>
Cc: Moritz Mühlenhoff <jmm@inutil.org>, Bernd Zeimetz <bzed@debian.org>, 969926@bugs.debian.org
Subject: Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
From: Florian Weimer <fw@deneb.enyo.de>
Date: Fri, 04 Jun 2021 22:56:39 +0200
Message-id: <[🔎] 87im2tcprs.fsf@mid.deneb.enyo.de>
Reply-to: Florian Weimer <fw@deneb.enyo.de>, 969926@bugs.debian.org
In-reply-to: <[🔎] 20210604203045.GD3376@aurel32.net> (Aurelien Jarno's message of "Fri, 4 Jun 2021 22:30:45 +0200")
References: <159961311079.447707.8355487778276012335.reportbug@think.wals.bzed.at> <20200909103044.GC2297@aurel32.net> <[🔎] YLZlx2YgYhLZqxbQ@pisco.westfalen.local> <[🔎] 871r9hiilx.fsf@mid.deneb.enyo.de> <[🔎] 20210604185339.GC3376@aurel32.net> <[🔎] 87sg1xh0h9.fsf@mid.deneb.enyo.de> <[🔎] 20210604203045.GD3376@aurel32.net> <159961311079.447707.8355487778276012335.reportbug@think.wals.bzed.at>

* Aurelien Jarno:

>> > Is it possible to commit those patches to the upstream 2.28 branch? If
>> > so, I guess we can simply pull the branch in the Debian package, fixing
>> > many other security bugs at the same time.
>> 
>> I'm concerned about the GLIBC_PRIVATE internal ABI change, it causes
>> issues if the update is applied without a reboot:
>> 
>>   glibc: After upgrade, before reboot, systemd services using USER= do
>>   not start (caused by fix for bug 1871397)
>>   <https://bugzilla.redhat.com/show_bug.cgi?id=1927040>
>
> That issue looks problematic for Debian, we usually do not require a
> (immediate) reboot after applying a security upgrade.

I submitted a merge request that should work around it, using the
patch from CentOS 8 (and eventually Red Hat Enterprise Linux, of
course):

  <https://salsa.debian.org/glibc-team/glibc/-/merge_requests/2>

Please let me know what you think.  The new glibc seems to work okay
in general.

Reply to:

References:
- Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
  - From: Moritz Mühlenhoff <jmm@inutil.org>
- Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
  - From: Florian Weimer <fw@deneb.enyo.de>
- Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
  - From: Aurelien Jarno <aurelien@aurel32.net>
- Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
  - From: Florian Weimer <fw@deneb.enyo.de>
- Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
  - From: Aurelien Jarno <aurelien@aurel32.net>

Prev by Date: Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
Next by Date: Use paid media successfully
Previous by thread: Bug#969926: glibc: Parsing of /etc/gshadow can return bad pointers causing segfaults in applications
Next by thread: Upcoming stable point release (10.10)
Index(es):
- Date
- Thread