Re: NetBSD-5 appears to have forgotten how to execute 0.9A binaries

To: Martin Husemann <martin%duskware.de@localhost>
Subject: Re: NetBSD-5 appears to have forgotten how to execute 0.9A binaries
From: buhrow%lothlorien.nfbcal.org@localhost (Brian Buhrow)
Date: Tue, 11 Sep 2012 09:45:22 -0700

        hello.  It turns out this problem ismore sinister than I first
thought.  I have another such binary that hangs the system entirely -- even
running ldd(1), which I assume runs through the same bad code causes the
system to become completely unresponsive -- no ping, no shell control-t,
hard reset required.  And, just to be clear about the nature of this issue,
root privileges are not required either.  So, this is a nice little local
DOS attack.  I have a test machine available which easily does crash dumps
and has a good serial console, so I'll see if I can reproduce on that and
provide further results.  I assume a fix would want to be pulled
up,assuming I find it, on the grounds that it's a security fix.  I'll also
see about trying -current and NetBSD-6, but I'm guessing those are
vulnerable as well, given Matthew's test with my binary under NetBSD-6
yesterday.
-thanks
-Brian

Follow-Ups:
- Re: NetBSD-5 appears to have forgotten how to execute 0.9A binaries
  - From: Matthew Mondor

References:
- Re: NetBSD-5 appears to have forgotten how to execute 0.9A binaries
  - From: Martin Husemann

Prev by Date: Re: NetBSD-5 appears to have forgotten how to execute 0.9A binaries
Next by Date: Re: CVS commit: src
Previous by Thread: Re: NetBSD-5 appears to have forgotten how to execute 0.9A binaries
Next by Thread: Re: NetBSD-5 appears to have forgotten how to execute 0.9A binaries
Indexes:

Home | Main Index | Thread Index | Old Index