From owner-cvs-all Sat Jan 26 18:27:29 2002 Delivered-To: cvs-all@freebsd.org Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by hub.freebsd.org (Postfix) with ESMTP id 68BE037B416; Sat, 26 Jan 2002 18:27:21 -0800 (PST) Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.11.6/8.11.5) with SMTP id g0R2RDD93264; Sat, 26 Jan 2002 21:27:13 -0500 (EST) (envelope-from robert@fledge.watson.org) Date: Sat, 26 Jan 2002 21:27:12 -0500 (EST) From: Robert Watson X-Sender: robert@fledge.watson.org To: dillon@FreeBSD.org Cc: Jacques Vidrine , cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/conf newvers.sh src/sys/kern kern_exec.c In-Reply-To: <200201260608.g0Q68Gb35274@freefall.freebsd.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG It probably is a problem in RELENG_3. However, there are plenty of other locally exploitable security holes in RELENG_3 that are far more easily exploited. The current status of RELENG_3 from the S-O perspective is that it is largely unsupported, although remotely exploitable network vulnerabilities are often patched also. Of course, it won't do any harm to MFC it. Robert N M Watson FreeBSD Core Team, TrustedBSD Project robert@fledge.watson.org NAI Labs, Safeport Network Services On Fri, 25 Jan 2002 dillon@FreeBSD.org wrote: > Is this also a problem in RELENG_3 ? If so I would like to MFC > this fix to RELENG_3. > > -Matt > > :nectar 2002/01/23 15:05:54 PST > : > : Modified files: (Branch: RELENG_4_3) > : sys/conf newvers.sh > : sys/kern kern_exec.c sys_process.c > : sys/miscfs/procfs procfs.h procfs_ctl.c procfs_dbregs.c > : procfs_fpregs.c procfs_mem.c > : procfs_regs.c procfs_status.c > : procfs_vnops.c > : sys/sys proc.h > : Log: > : Eliminate ptrace/exec race. > : > : MFC 1.191 src/sys/sys/proc.h > : MFC 1.44 src/sys/kern/kern_exec.c (execve) > : Add P_INEXEC flag to indicate that a process is currently exec'ing. > : > : sys/kern/sys_process.c (ptrace) > : sys/miscfs/procfs/... > : Do not allow debugging of a process during exec. > : > : Revision Changes Path > : 1.44.2.14.2.14 +1 -1 src/sys/conf/newvers.sh > : 1.107.2.5.2.2 +17 -4 src/sys/kern/kern_exec.c > : 1.51.2.1.2.1 +5 -1 src/sys/kern/sys_process.c > : 1.32.2.1.2.2 +2 -2 src/sys/miscfs/procfs/procfs.h > : 1.20.2.1.2.1 +4 -1 src/sys/miscfs/procfs/procfs_ctl.c > : 1.4.2.1.2.1 +4 -1 src/sys/miscfs/procfs/procfs_dbregs.c > : 1.11.2.1.2.1 +4 -1 src/sys/miscfs/procfs/procfs_fpregs.c > : 1.46.2.1.2.2 +4 -1 src/sys/miscfs/procfs/procfs_mem.c > : 1.10.2.1.2.1 +4 -1 src/sys/miscfs/procfs/procfs_regs.c > : 1.20.2.3.2.1 +3 -1 src/sys/miscfs/procfs/procfs_status.c > : 1.76.2.3.2.2 +7 -1 src/sys/miscfs/procfs/procfs_vnops.c > : 1.99.2.5.2.1 +2 -1 src/sys/sys/proc.h > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message