This is the mail archive of the
glibc-bugs@sourceware.org
mailing list for the glibc project.
[Bug ports/4459] MIPS mips64 setregid and friends fail
- From: "jsm28 at gcc dot gnu dot org" <sourceware-bugzilla at sourceware dot org>
- To: glibc-bugs at sources dot redhat dot com
- Date: 17 Jan 2009 12:46:05 -0000
- Subject: [Bug ports/4459] MIPS mips64 setregid and friends fail
- References: <20070503164504.4459.pwatkins@sicortex.com>
- Reply-to: sourceware-bugzilla at sourceware dot org
------- Additional Comments From jsm28 at gcc dot gnu dot org 2009-01-17 12:46 -------
I identified that there was a kernel bug with potential security implications
involved in <http://lkml.org/lkml/2007/6/4/376> (4 June 2007). There were
a few replies concluding that the kernel should indeed be converting the
syscall arguments to the correct types (properly extended) before the main C
syscall implementations were called, but no actual fix.
It now appears someone else has rediscovered that there is, indeed, a security
issue here and managed to get more action, and it's fixed in 2.6.29-rc2.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0029
So, no glibc bug here, but a kernel security bug that should be fixed in
the latest kernel, more than a year and a half after I first identified
the security issues in public.
--
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |INVALID
http://sourceware.org/bugzilla/show_bug.cgi?id=4459
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.