Age | Commit message (Collapse) | Author |
|
The pt-chown binary is discussed in the "Running make install" section
without clarification of the needed configure option. Clarify this
and simplfy the discription which is already covered in the "Configuring
and compiling" section.
|
|
|
|
The helper binary pt_chown tricked into granting access to another
user's pseudo-terminal.
Pre-conditions for the attack:
* Attacker with local user account
* Kernel with FUSE support
* "user_allow_other" in /etc/fuse.conf
* Victim with allocated slave in /dev/pts
Using the setuid installed pt_chown and a weak check on whether a file
descriptor is a tty, an attacker could fake a pty check using FUSE and
trick pt_chown to grant ownership of a pty descriptor that the current
user does not own. It cannot access /dev/pts/ptmx however.
In most modern distributions pt_chown is not needed because devpts
is enabled by default. The fix for this CVE is to disable building
and using pt_chown by default. We still provide a configure option
to enable hte use of pt_chown but distributions do so at their own
risk.
|
|
|
|
Can be enabled with --enable-lock-elision=yes at configure time.
|
|
|
|
|
|
The GNU C Library does not support building for i386
therefore we remove mention of this configuration
from the INSTALL file.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* README.template: Update for 2.4.
* README: Regenerated.
* manual/install.texi (Configuring and compiling): Separate build
directory is mandatory. Use glibc-2.4 in example.
Update --enable-add-ons description.
(Supported Configurations): Remove section.
* INSTALL: Regenerated.
|
|
* NOTES, INSTALL: Regenerated.
|
|
recommend 4.1, advise 4.0 for powerpc64, and note 4.1 required for
powerpc, s390{x,} with new long double.
* INSTALL: Regenerated.
|
|
|
|
|
|
* manual/install.texi (Supported Configurations): Replace bug-glibc
mention with web URL.
* INSTALL: Regenerated.
* locale/iso-3166.def: Likewise, in comment.
* locale/iso-4217.def: Likewise.
* locale/iso-639.def: Likewise.
* posix/cpio.h: Remove bug reporting comment.
|
|
2004-02-29 Andreas Jaeger <aj@suse.de>
* manual/install.texi (Tools for Compilation): Autoconf 2.53 is required.
(Supported Configurations): Add x86_64-*-linux.
* INSTALL: Regenerated.
|
|
2002-12-09 Ulrich Drepper <drepper@redhat.com>
* sysdeps/unix/sysv/linux/syscalls.list: Add __libc_creat and
__libc_select aliases.
* sysdeps/unix/sysv/linux/sigwaitinfo.c: Define __libc_sigwaitinfo
alias.
* sysdeps/unix/sysv/linux/sigwait.c: Define __libc_sigwait alias.
* sysdeps/unix/sysv/linux/sigsuspend.c: Define __libc_sigsuspend alias.
* sysdeps/unix/sysv/linux/poll.c: Define __libc_poll alias.
* sysdeps/unix/syscalls.list: Define __libc_select alias.
* sysdeps/posix/waitid.c: Define __libc_waitid alias.
* sysdeps/posix/sigpause.c: Define __libc_sigpause and
__libc___xpg_sigpause aliases.
* sysdeps/generic/pselect.c: Define __libc_pselect alias.
* misc/error.c: Remove use of USE_IN_LIBIO.
|
|
* configure: Regenerated.
* manual/install.texi (Tools for Compilation): Say 3.2 is required.
(Configuring and compiling): Don't mention older GCC versions any more.
* INSTALL: Regenerated.
* manual/install.texi (Configuring and compiling, Installation,
Running make install, Linux): Linux -> GNU/Linux where appropriate.
* elf/rtld.c (_dl_start_final): Move defn before _dl_start so it can
be inlined. Declare it with always_inline if [DONT_USE_BOOTSTRAP_MAP]
and with noinline otherwise. Remove hack alloca use to prevent
inlining, we can ask for it explicitly nowadays.
|
|
2002-03-23 Jakub Jelinek <jakub@redhat.com>
* sysdeps/generic/brk.c (__curbrk): Declare.
* sysdeps/generic/dl-brk.c: Add attribute_hidden to __curbrk.
* sysdeps/generic/dl-sbrk.c: Likewise.
* sysdeps/unix/arm/dl-brk.S: New file.
* sysdeps/unix/bsd/hp/m68k/dl-brk.S: New file.
* sysdeps/unix/bsd/osf/alpha/dl-brk.S: New file.
* sysdeps/unix/bsd/sun/m68k/dl-brk.S: New file.
* sysdeps/unix/bsd/vax/dl-brk.S: New file.
* sysdeps/unix/i386/dl-brk.S: New file.
* sysdeps/unix/mips/dl-brk.S: New file.
* sysdeps/unix/sparc/dl-brk.S: New file.
* sysdeps/unix/sysv/linux/alpha/dl-brk.S: New file.
* sysdeps/unix/sysv/linux/ia64/dl-brk.S: New file.
* sysdeps/unix/sysv/linux/powerpc/dl-brk.S: New file.
* sysdeps/unix/sysv/linux/sparc/sparc64/dl-brk.S: New file.
* sysdeps/unix/sysv/linux/i386/dl-brk.c: Remove.
* sysdeps/unix/sysv/linux/i386/dl-sbrk.c: Remove.
2002-04-03 Andreas Schwab <schwab@suse.de>
* Makefile (headers): Add gnu/lib-names.h here instead of
install-others.
($(inst_includedir)/gnu/lib-names.h): Remove explicit
installation rule.
(install-headers): Add dependency on install-headers-nosubdir.
* stdio-common/Makefile (headers): Add bits/stdio_lim.h here
instead of install-others.
($(inst_includedir)/bits/stdio_lim.h): Remove explicit
installation rule.
2002-04-05 Ulrich Drepper <drepper@redhat.com>
* manual/users.tex (Enable/Disable Setuid): Fix typo in example.
Reported by Sam Roberts <sroberts@uniserve.com>.
2002-04-03 Jakub Jelinek <jakub@redhat.com>
* elf/do-rel.h (elf_dynamic_do_rel): Skip relative relocs if
l_addr == 0 and ELF_MACHINE_REL_RELATIVE.
* sysdeps/alpha/dl-machine.h (ELF_MACHINE_REL_RELATIVE): Define.
* sysdeps/ia64/dl-machine.h (ELF_MACHINE_REL_RELATIVE): Define.
2002-04-03 David Mosberger <davidm@hpl.hp.com>
* sysdeps/ia64/dl-machine.h (TRAMPOLINE_TEMPLATE): Add unwind info.
(RTLD_START): Ditto.
(__ia64_init_bootstrap_fdesc_table): Insert stop bit to avoid RAW
dependency violation.
|
|
2002-02-06 Ulrich Drepper <drepper@redhat.com>
* configure.in: Add --without-tls option.
* sysdeps/i386/elf/configure.in: Don't check for TLS support if
--without-tls is given.
* sysdeps/generic/dl-tls.c: Include <tls.h>.
* sysdeps/i386/dl-tls.h: Don't define anything if !USE_TLS.
|
|
* configure.in: Require gettext 0.10.36 or newer.
* manual/install.texi (Tools for Compilation): Mention gettext
0.10.36.
|
|
|
|
|
|
2000-11-03 Ulrich Drepper <drepper@redhat.com>
* posix/Versions: Export __sysconf.
|
|
2000-09-20 Andreas Jaeger <aj@suse.de>
* iconvdata/Makefile (generated): Add tst-tables.out.
* intl/Makefile (generated): Add test output.
2000-09-19 Andreas Jaeger <aj@suse.de>
* sunrpc/clnt_simp.c (callrpc): Fix write beyond end of buffer.
Reported by Jens-Uwe Mager <jum@helios.de>.
|
|
2000-08-09 Andreas Jaeger <aj@suse.de>
* configure.in: Change required make versions.
* manual/install.texi (Tools for Compilation): Document required
make version.
(Supported Configurations): Update list of supported
configurations.
|
|
2000-03-25 Ulrich Drepper <drepper@redhat.com>
* manual/install.texi: Remove references to crypt add-on.
|
|
|
|
* sysdeps/unix/sysv/linux/sys/raw.h (RAW_MAJOR): Added.
1999-09-08 Andreas Jaeger <aj@arthur.rhein-neckar.de>
* manual/install.texi (Configuring and compiling): Mention GCC 2.95.
1999-09-08 Andreas Jaeger <aj@arthur.rhein-neckar.de>
* configure.in: Fix make version test for make 3.77.95 and later
versions.
Based on a patch by Paul D. Smith <psmith@baynetworks.com>.
1999-09-10 Ulrich Drepper <drepper@cygnus.com>
|
|
1999-08-31 H.J. Lu <hjl@gnu.org>
* nscd/nscd_getgr_r.c (nscd_getgr_r): Cleanup the buffer count.
|
|
1999-08-18 Andreas Jaeger <aj@arthur.rhein-neckar.de>
* manual/install.texi (Configuring and compiling): Clarify ix86
situation.
|
|
1999-07-20 Geoff Keating <geoffk@cygnus.com>
* math/libm-test.c: Tweak deltas for a clean run on ppc.
|
|
1999-08-10 H.J. Lu <hjl@gnu.org>
* resolv/nss_dns/dns-host.c (getanswer_r): Cleanup out-of-
buffer handling.
1999-08-15 Ulrich Drepper <drepper@cygnus.com>
* elf/elf.h: Define ElfXX_Versym.
* elf/link.h (struct link_map): Use ElfXX_Versym for l_versyms
definition.
* stdio-common/vfprintf.c (process_string_arg): Handle precisions
for string output correctly in the wide character case.
Patch by Akira YOSHIYAMA <yosshy@tkf.att.ne.jp>.
* intl/locale.alias: Add catalan.
1999-08-14 Andreas Jaeger <aj@arthur.rhein-neckar.de>
* manual/install.texi (Configuring and compiling): Mention
CFLAGS.
1999-08-15 Ulrich Drepper <drepper@cygnus.com>
* po/pt_BR.po: New file.
1999-08-13 Andreas Jaeger <aj@arthur.rhein-neckar.de>
* math/libm-test.c (yn_test): Adjust deltas for i386.
(ccosh_test): Likewise.
(jn_test): Likewise.
1999-08-15 Ulrich Drepper <drepper@cygnus.com>
* sysdeps/generic/_G_config.h: Get definition of mbstate_t.
|