Linux 2.2.21-ow1

From: Solar Designer (solar@private)
Date: Mon May 27 2002 - 02:47:37 PDT


Hi,

The Linux 2.2.21-ow1 kernel patch is out and a part of Owl-current.
Besides being an update to Linux 2.2.21, this version has the following
changes:

Access to /proc/sys is no longer restricted even when the "Restricted
/proc" option is enabled.  This is in order to not give a false sense
of security because the same information is also accessible via sysctl(2).
At the same time, access to /proc/tty/driver is restricted to root no
matter what the setting of "Restricted /proc" is.  This is because of
the old permissions being a security problem with the kernel itself
(please refer to the comment in the patch for more information).  Both
of these changes are consistent with the ones previously made in Linux
2.4.18-ow0.

The getcwd(2) instance of the d_path() truncation problem in the Linux
kernel pointed out by Wojciech Purczynski on public mailing lists is
fixed.  Perhaps Alan was just too busy to fix this for 2.2.21 official.

The fsuid/fsgid handling inconsistency discovered by Hao Chen where a
process could enter an illegal state where ruid=euid=suid!=0 and
fsuid=0 (and/or the same for fsgid) is now fixed with a back-port of
the fix from Linux 2.5.16+.

-- 
/sd



This archive was generated by hypermail 2.1.3 : Sun Jan 15 2006 - 13:43:16 PST