[Midnightbsd-cvs] [MidnightBSD/src] 32498b: A programming error in the Linux compatibility lay...
Lucas Holt
noreply at github.com
Wed Jun 30 09:31:45 EDT 2021
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: 32498b8c5377186e4799861f2c0b8d8e937497de
https://github.com/MidnightBSD/src/commit/32498b8c5377186e4799861f2c0b8d8e937497de
Author: Lucas Holt <luke at foolishgames.com>
Date: 2021-06-30 (Wed, 30 Jun 2021)
Changed paths:
M UPDATING
M sys/compat/linux/linux_futex.c
Log Message:
-----------
A programming error in the Linux compatibility layer futex(2) system
call might allow attackers to cause a denial of service.
Commit: ed1848652c065d4fb35208be6628eb3d52478b29
https://github.com/MidnightBSD/src/commit/ed1848652c065d4fb35208be6628eb3d52478b29
Author: Lucas Holt <luke at foolishgames.com>
Date: 2021-06-30 (Wed, 30 Jun 2021)
Changed paths:
M lib/libcasper/libcasper/libcasper_impl.c
M lib/libcasper/libcasper/libcasper_impl.h
M lib/libcasper/libcasper/service.c
M lib/libcasper/libcasper/zygote.c
Log Message:
-----------
libcasper(3) creates service processes by forking the calling process,
so they initially inherit the calling process' file descriptor table.
Casper services expect the lowest 3 file descriptors, traditionally
corresponding to standard input, output, and error, are redirected to
/dev/null. libcasper(3) ensures this is the case. However, it did not
handle the possibility that one of them is closed, and this scenario
would trigger an assertion failure during service creation, resulting in
a crash.
Obtained from: FreeBSD
Commit: e838337a3609b15c2c90816fc487dc0c7639fe1a
https://github.com/MidnightBSD/src/commit/e838337a3609b15c2c90816fc487dc0c7639fe1a
Author: Lucas Holt <luke at foolishgames.com>
Date: 2021-06-30 (Wed, 30 Jun 2021)
Changed paths:
M UPDATING
Log Message:
-----------
document libcasper change.
Compare: https://github.com/MidnightBSD/src/compare/285d90fa2d77...e838337a3609
More information about the Midnightbsd-cvs
mailing list