[Bug 83099] Re: File descriptor leak allows DoS

2007-02-27 Thread Scott James Remnant
Fixed with upload of 0.3.5 to Ubuntu ** Changed in: upstart (Ubuntu) Status: In Progress => Fix Released -- File descriptor leak allows DoS https://launchpad.net/bugs/83099 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-12 Thread Scott James Remnant
** Changed in: upstart (Ubuntu) Status: Confirmed => In Progress -- File descriptor leak allows DoS https://launchpad.net/bugs/83099 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-06 Thread Martin Pitt
After discussing this, we decided that the potential impact on Edgy is negligible, thus we will treat this as a normal bug fix. ** Visibility changed to: Public ** Changed in: Ubuntu Edgy Status: Unconfirmed => Rejected -- File descriptor leak allows DoS https://launchpad.net/bugs/83099

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-06 Thread Scott James Remnant
** Changed in: upstart (Ubuntu) Importance: Undecided => Critical ** Changed in: upstart (Ubuntu) Status: Unconfirmed => Confirmed -- File descriptor leak allows DoS https://launchpad.net/bugs/83099 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mai

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-06 Thread Scott James Remnant
Fix released in 0.3.2 ** Changed in: upstart (upstream) Status: Fix Committed => Fix Released ** Changed in: Ubuntu Edgy Assignee: (unassigned) => Ubuntu Security Team -- File descriptor leak allows DoS https://launchpad.net/bugs/83099 -- ubuntu-bugs mailing list ubuntu-bugs@lists

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-05 Thread Scott James Remnant
Attached is a patch for upstart 0.2.7, as found in edgy. It marks the inotify instance file descriptor to be closed on exec. The same patch should apply to 0.3.0 and 0.3.1. 0.3.2 will be released with the rewritten inotify code, which is not affected by this bug. ** Attachment added: "Patch fo

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-05 Thread Scott James Remnant
Attached a proof exploit code that can be run with: 'echo ./upsploit > upsploit.txt 2>&1' | atd now This demonstrates that we can obtain the inotify instance descriptor, and with it, remove and add watches. Once run, upstart is unable to notice changes to /etc/event.d Normally the leaked watc

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-04 Thread Colin Watson
** Changed in: Ubuntu Sourcepackagename: None => upstart -- File descriptor leak allows DoS https://launchpad.net/bugs/83099 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 83099] Re: File descriptor leak allows DoS

2007-02-03 Thread David Watson
** Also affects: Ubuntu Importance: Undecided Status: Unconfirmed ** Visibility changed to: Private ** This bug has been flagged as a security issue -- File descriptor leak allows DoS https://launchpad.net/bugs/83099 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://l