From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1946016AbWGOIWF (ORCPT ); Sat, 15 Jul 2006 04:22:05 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1946015AbWGOIWF (ORCPT ); Sat, 15 Jul 2006 04:22:05 -0400 Received: from mta09-winn.ispmail.ntl.com ([81.103.221.49]:62943 "EHLO mtaout03-winn.ispmail.ntl.com") by vger.kernel.org with ESMTP id S1946016AbWGOIWE (ORCPT ); Sat, 15 Jul 2006 04:22:04 -0400 Message-ID: <44B8A720.3030309@gentoo.org> Date: Sat, 15 Jul 2006 09:28:16 +0100 From: Daniel Drake User-Agent: Thunderbird 1.5.0.4 (X11/20060603) MIME-Version: 1.0 To: Linus Torvalds CC: Greg KH , Linux Kernel Mailing List , Andrew Morton , stable@kernel.org, Marcel Holtmann Subject: Re: Linux 2.6.17.5 References: <20060715030047.GC11167@kroah.com> In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Hi Linus, Linus Torvalds wrote: > I did a slight modification of the patch I committed initially, in the > face of the report from Marcel that the initial sledge-hammer approach > broke his hald setup. > > See commit 9ee8ab9fbf21e6b87ad227cd46c0a4be41ab749b: "Relax /proc fix a > bit", which should still fix the bug (can somebody verify? I'm 100% sure, > but still..), but is pretty much guaranteed to not have any secondary side > effects. > > It still leaves the whole issue of whether /proc should honor chmod AT ALL > open, and I'd love to close that one, but from a "minimal fix" standpoint, > I think it's a reasonable (and simple) patch. > > Marcel, can you check current git? I can confirm that the new fix prevents the exploit from working, with no immediately visible side effects. Thanks, Daniel