version 1.7, 2000/05/26 21:21:45 |
version 1.8, 2000/05/27 00:58:55 |
|
|
<li><font color=#009000><strong>024: SECURITY FIX: May 26, 2000</strong></font><br> |
<li><font color=#009000><strong>024: SECURITY FIX: May 26, 2000</strong></font><br> |
Kernel contained an undocumented system call used to lock semaphore operations |
Kernel contained an undocumented system call used to lock semaphore operations |
while they were being sampled by the ipcs(1) command. This locking could be |
while they were being sampled by the ipcs(1) command. This locking could be |
used as a local denial of service attack which would block processes from |
used as a local denial of service attack which would block the exiting of |
exiting.<br> |
processes which had semaphore resources allocated. Processes not using |
|
semaphores are not affected, so the actual effect is very minimal.<br> |
<a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.6/common/024_sysv_sem.patch> |
<a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.6/common/024_sysv_sem.patch> |
A jumbo patch exists which remedies this problem.</a> |
A jumbo patch exists which remedies this problem.</a> |
<p> |
<p> |