From owner-freebsd-security@FreeBSD.ORG  Fri Jul 27 07:41:36 2007
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 4677516A41B
	for <freebsd-security@freebsd.org>;
	Fri, 27 Jul 2007 07:41:36 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: from mail2.fluidhosting.com (mx22.fluidhosting.com [204.14.89.5])
	by mx1.freebsd.org (Postfix) with SMTP id DC17513C47E
	for <freebsd-security@freebsd.org>;
	Fri, 27 Jul 2007 07:41:35 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: (qmail 11045 invoked by uid 399); 27 Jul 2007 07:41:35 -0000
Received: from localhost (HELO ?192.168.0.4?) (dougb@dougbarton.us@127.0.0.1)
	by localhost with ESMTP; 27 Jul 2007 07:41:35 -0000
X-Originating-IP: 127.0.0.1
Message-ID: <46A9A1A8.6000300@FreeBSD.org>
Date: Fri, 27 Jul 2007 00:41:28 -0700
From: Doug Barton <dougb@FreeBSD.org>
Organization: http://www.FreeBSD.org/
User-Agent: Thunderbird 2.0.0.5 (Windows/20070716)
MIME-Version: 1.0
To: Joel Hatton <freebsd-stable@auscert.org.au>
References: <200707270712.l6R7CYs4064783@app.auscert.org.au>
In-Reply-To: <200707270712.l6R7CYs4064783@app.auscert.org.au>
X-Enigmail-Version: 0.95.2
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: freebsd-security@freebsd.org, Philipp Wuensche <cryx-freebsd@h3q.com>,
	freebsd-stable@freebsd.org
Subject: jail fstab
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Jul 2007 07:41:36 -0000

Joel Hatton wrote:
> Hi,
> 
> I'm dredging up an old issue here, but it appears to be unresolved in
> RELENG_5_5 at this time.

The RELENG_5_5 tag is static, so nothing will change in it.  You
mention a patch version below however, so you should be aware that
only the most crucial security fixes are ever applied to security
branches.

> In short, the jail_mount_fstab function is not given the fstab file on
> which the local variables depend. 

This problem is fixed in RELENG_5, so if you were to upgrade to
5-stable you wouldn't have this problem anymore.

You should also seriously consider upgrading to 6-stable at least,
since fewer and fewer fixes will be backported to the 5.x branch as
time goes by.

Doug

-- 

    This .signature sanitized for your protection