From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Date: Mon, 17 Aug 2009 14:07:42 +0400 From: "Dmitry V. Levin" To: ALT Linux Sisyphus discussions Message-ID: <20090817100742.GA32078@wo.int.altlinux.org> Mail-Followup-To: ALT Linux Sisyphus discussions References: <20090817064217.GA19625@granary.armor.altlinux.org> <20090817065202.GB30489@wo.int.altlinux.org> <20090817080210.GA24088@localhost.localdomain> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="vtzGhvizbBRQ85DL" Content-Disposition: inline In-Reply-To: <20090817080210.GA24088@localhost.localdomain> X-fingerprint: FE4C 93AB E19A 2E4C CB5D 3E4E 7CAB E6AC 9E35 361E Subject: Re: [sisyphus] [cyber] I: Sisyphus-20090817 packages: +28 (9313) X-BeenThere: sisyphus@lists.altlinux.org X-Mailman-Version: 2.1.12 Precedence: list Reply-To: ALT Linux Sisyphus discussions List-Id: ALT Linux Sisyphus discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Aug 2009 10:07:43 -0000 Archived-At: List-Archive: List-Post: --vtzGhvizbBRQ85DL Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Aug 17, 2009 at 12:02:10PM +0400, Alexey Novikov wrote: > On Mon, Aug 17, 2009 at 10:52:02AM +0400, Dmitry V. Levin wrote: > > On Mon, Aug 17, 2009 at 10:42:17AM +0400, QA Team Robot wrote: > > > 28 UPDATED packages > > [...] > > > startup - The system startup scripts > > > * Mon Aug 17 2009 Dmitry V. Levin 0.9.8.22-alt1 > > > - rc.d/init.d/clock, sysconfig/clock: Introduced > > > HWCLOCK_SET_TIME_AT_START (closes: #19787). > > > - sysctl.conf: Added "vm.mmap_min_addr =3D 65536". > >=20 > > =F5=DE=C9=D4=D9=D7=C1=D1 =D0=D2=CF=DB=CC=D9=C5 =C9 =C2=D5=C4=D5=DD=C9= =C5 kernel arbitrary code execution due to > > controlled null pointer dereference, =D1 =D2=C5=DB=C9=CC =C9=DA=CD=C5= =CE=C9=D4=D8 =DA=CE=C1=DE=C5=CE=C9=C5 > > vm.mmap_min_addr =D0=CF =D5=CD=CF=CC=DE=C1=CE=C9=C0 =D7 /etc/sysctl.con= f =CE=C1 =C2=CF=CC=C5=C5 =C2=C5=DA=CF=D0=C1=D3=CE=CF=C5. > > =E8=CF=C4=D1=D4 =D3=CC=D5=C8=C9, =DE=D4=CF =CB=C1=CB=CF=CA-=D4=CF =D3= =CF=C6=D4 =CE=C5 =D2=C1=C2=CF=D4=C1=C5=D4 =D7 =DC=D4=CF=CD =D2=C5=D6=C9=CD= =C5, =CE=CF > > =C4=CF=D3=D4=CF=D7=C5=D2=CE=D9=C8 =D3=D7=C5=C4=C5=CE=C9=CA =D5 =CD=C5= =CE=D1 =CE=C5=D4. =F0=CF =CB=D2=C1=CA=CE=C5=CA =CD=C5=D2=C5, =D5=D0=CF=CD= =C9=CE=C1=D7=DB=C9=CA=D3=D1 > > =D7 =DC=D4=CF=CA =D3=D7=D1=DA=C9 wine =D2=C1=C2=CF=D4=C1=C5=D4. =EE=CF= =D7=D9 =CE=C1 =D7=D3=D1=CB=C9=CA =D3=CC=D5=DE=C1=CA =C9=CD=C5=CA=D4=C5 =D7= =D7=C9=C4=D5. >=20 > [novikov@novikov ~]$ cat /proc/sys/vm/mmap_min_addr=20 > 0 > [novikov@novikov ~]$ xdosemu > < =D2=C1=C2=CF=D4=C1=C5=D4 > > [novikov@novikov ~]$ sudo sh -c 'echo 65536 > >/proc/sys/vm/mmap_min_addr ' > [novikov@novikov ~]$ xdosemu > LOWRAM mmap: =EE=C5=C4=CF=D0=D5=D3=D4=C9=CD=D9=CA =C1=D2=C7=D5=CD=C5=CE=D4 > =EF=DB=C9=C2=CB=C1 =D3=C5=C7=CD=C5=CE=D4=C9=D2=CF=D7=C1=CE=C9=D1 =E7=CF=D7=CF=D2=D1=D4, =DE=D4=CF =C1=CE=C1=CC=CF=C7=C9=DE=CE=D9=CA =D3=CF= =C6=D4 =D0=CF=C4 =CE=C1=DA=D7=C1=CE=C9=C5=CD dosbox =D2=C1=C2=CF=D4=C1=C5= =D4 =D7 =DC=D4=CF=CD =D2=C5=D6=C9=CD=C5 =CE=CF=D2=CD=C1=CC=D8=CE=CF. --=20 ldv --vtzGhvizbBRQ85DL Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkqJK+4ACgkQfKvmrJ41Nh7wUgCfQZpK9lslynRLK1k9riDPAufI iaoAoIaFlNFpVlOAc0so2o8HoBRsYDKt =5bxH -----END PGP SIGNATURE----- --vtzGhvizbBRQ85DL--