[Midnightbsd-cvs] [MidnightBSD/src] 04402d: A programming error in the Linux compatibility lay...
Lucas Holt
noreply at github.com
Wed Jun 30 09:36:07 EDT 2021
Branch: refs/heads/stable/2.0
Home: https://github.com/MidnightBSD/src
Commit: 04402d39ee2a452877f76187622acd6f04116170
https://github.com/MidnightBSD/src/commit/04402d39ee2a452877f76187622acd6f04116170
Author: Lucas Holt <luke at foolishgames.com>
Date: 2021-06-30 (Wed, 30 Jun 2021)
Changed paths:
M UPDATING
M sys/compat/linux/linux_futex.c
Log Message:
-----------
A programming error in the Linux compatibility layer futex(2) system
call might allow attackers to cause a denial of service.
Commit: e38dbbfa62a2ec2c4e3ab898cd08852a81444df3
https://github.com/MidnightBSD/src/commit/e38dbbfa62a2ec2c4e3ab898cd08852a81444df3
Author: Lucas Holt <luke at foolishgames.com>
Date: 2021-06-30 (Wed, 30 Jun 2021)
Changed paths:
M lib/libcasper/libcasper/libcasper_impl.c
M lib/libcasper/libcasper/libcasper_impl.h
M lib/libcasper/libcasper/service.c
M lib/libcasper/libcasper/zygote.c
Log Message:
-----------
libcasper(3) creates service processes by forking the calling process,
so they initially inherit the calling process' file descriptor table.
Casper services expect the lowest 3 file descriptors, traditionally
corresponding to standard input, output, and error, are redirected to
/dev/null. libcasper(3) ensures this is the case. However, it did not
handle the possibility that one of them is closed, and this scenario
would trigger an assertion failure during service creation, resulting in
a crash.
Obtained from: FreeBSD
Commit: ecc1c7a0e0b8f682c7517bf7918f69873badedd8
https://github.com/MidnightBSD/src/commit/ecc1c7a0e0b8f682c7517bf7918f69873badedd8
Author: Lucas Holt <luke at foolishgames.com>
Date: 2021-06-30 (Wed, 30 Jun 2021)
Changed paths:
M UPDATING
Log Message:
-----------
document libcasper change.
Compare: https://github.com/MidnightBSD/src/compare/52ba1e5c3a5e...ecc1c7a0e0b8
More information about the Midnightbsd-cvs
mailing list