Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

Hi! On Tue, Mar 08, 2011 at 03:49:34PM -0500, Anthony G. Basile wrote: > Take a look at [1] for a good laugh. Yep, that was funny. :) BTW, if I understood correctly, with proposed patch my apache won't segfault anymore, but zendoptimizer and ioncube libs won't be loaded… so this isn't looks like

Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

On Tue, Mar 8, 2011 at 3:49 PM, Anthony G. Basile wrote: > On 03/08/2011 02:05 PM, Mike Frysinger wrote: >> On Tue, Mar 8, 2011 at 1:40 PM, Alex Efros wrote: >>> On Fri, Mar 06, 2009 at 03:25:16PM -0800, Ned Ludd wrote: > On Fri, Mar 06, 2009 at 11:12:59PM +0200, pagee...@freemail.hu wrote: >>>

Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

On 03/08/2011 02:05 PM, Mike Frysinger wrote: > On Tue, Mar 8, 2011 at 1:40 PM, Alex Efros wrote: >> On Fri, Mar 06, 2009 at 03:25:16PM -0800, Ned Ludd wrote: On Fri, Mar 06, 2009 at 11:12:59PM +0200, pagee...@freemail.hu wrote: > ah crap, i know what it is. it's a several years old glibc

Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

2011/3/8 Alex Efros : > Actually, from initial discussion I got impression this is *well* known > (at least to PaX/Hardened/Glibc developers) issue, so there unlikely any > needs in opening new bug. And I don't have patch for glibc. If anyone > think it have sense to report this to gentoo's bugzill

Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

On Tue, Mar 8, 2011 at 2:52 PM, Alex Efros wrote: > On Tue, Mar 08, 2011 at 02:05:46PM -0500, Mike Frysinger wrote: >> if there's a bug in glibc, an actual bug in bugs.g.o needs to be >> opened with real details/patches.  otherwise, nothing is going to >> change. > > Actually, from initial discussi

Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

Hi! On Tue, Mar 08, 2011 at 02:05:46PM -0500, Mike Frysinger wrote: > if there's a bug in glibc, an actual bug in bugs.g.o needs to be > opened with real details/patches. otherwise, nothing is going to > change. Actually, from initial discussion I got impression this is *well* known (at least to

Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

On Tue, Mar 8, 2011 at 1:40 PM, Alex Efros wrote: > On Fri, Mar 06, 2009 at 03:25:16PM -0800, Ned Ludd wrote: >> > On Fri, Mar 06, 2009 at 11:12:59PM +0200, pagee...@freemail.hu wrote: >> > > ah crap, i know what it is. it's a several years old glibc bug where >> > > someone >> > > put a certain v

Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination

Hi! On Fri, Mar 06, 2009 at 03:25:16PM -0800, Ned Ludd wrote: > > On Fri, Mar 06, 2009 at 11:12:59PM +0200, pagee...@freemail.hu wrote: > > > ah crap, i know what it is. it's a several years old glibc bug where > > > someone > > > put a certain variable into the RELRO segment but forgot that it'l