From owner-freebsd-ports-bugs@FreeBSD.ORG Sat Jul 24 19:50:09 2010 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 654111065673 for ; Sat, 24 Jul 2010 19:50:09 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 87C668FC1A for ; Sat, 24 Jul 2010 19:50:09 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id o6OJo9CK098409 for ; Sat, 24 Jul 2010 19:50:09 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.4/8.14.4/Submit) id o6OJo98S098402; Sat, 24 Jul 2010 19:50:09 GMT (envelope-from gnats) Resent-Date: Sat, 24 Jul 2010 19:50:09 GMT Resent-Message-Id: <201007241950.o6OJo98S098402@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Steve Wills Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9416810656ED for ; Sat, 24 Jul 2010 19:43:01 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (www.freebsd.org [IPv6:2001:4f8:fff6::21]) by mx1.freebsd.org (Postfix) with ESMTP id C70548FC12 for ; Sat, 24 Jul 2010 19:43:01 +0000 (UTC) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.14.3/8.14.3) with ESMTP id o6OJh1Og075212 for ; Sat, 24 Jul 2010 19:43:01 GMT (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.14.3/8.14.3/Submit) id o6OJh1cW075211; Sat, 24 Jul 2010 19:43:01 GMT (envelope-from nobody) Message-Id: <201007241943.o6OJh1cW075211@www.freebsd.org> Date: Sat, 24 Jul 2010 19:43:01 GMT From: Steve Wills To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-3.1 Cc: Subject: ports/148911: maintainer update: mark security/isolate forbidden due to security issue X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 Jul 2010 19:50:09 -0000 >Number: 148911 >Category: ports >Synopsis: maintainer update: mark security/isolate forbidden due to security issue >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Sat Jul 24 19:50:08 UTC 2010 >Closed-Date: >Last-Modified: >Originator: Steve Wills >Release: 8.1-RC2 >Organization: >Environment: >Description: The security/isolate port currently suffers from local root privileges escalation problems. It should not be used. The attached patch marks it forbidden. Also marks it broken on pre 8.x due to lack of unlinkat (and openat) syscalls, in preparation for when the security issue is fixed. >How-To-Repeat: >Fix: Patch attached with submission follows: diff -ruN security/isolate.orig/Makefile security/isolate/Makefile --- security/isolate.orig/Makefile 2010-07-24 15:35:34.963084308 -0400 +++ security/isolate/Makefile 2010-07-24 15:38:47.628535561 -0400 @@ -24,8 +24,10 @@ .include -.if ${OSVERSION} < 700025 -IGNORE= does not compile (needs gelf.h) +.if ${OSVERSION} < 800000 +IGNORE= does not compile (needs unlinkat) .endif +FORBIDDEN= isolate currently suffers from local root privilege escallation bugs + .include >Release-Note: >Audit-Trail: >Unformatted: