From owner-freebsd-security@FreeBSD.ORG Mon Apr 8 22:41:29 2013 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 6E45A44D for ; Mon, 8 Apr 2013 22:41:29 +0000 (UTC) (envelope-from rsimmons0@gmail.com) Received: from mail-ea0-x234.google.com (mail-ea0-x234.google.com [IPv6:2a00:1450:4013:c01::234]) by mx1.freebsd.org (Postfix) with ESMTP id 0B151C1 for ; Mon, 8 Apr 2013 22:41:28 +0000 (UTC) Received: by mail-ea0-f180.google.com with SMTP id d10so2383320eaj.25 for ; Mon, 08 Apr 2013 15:41:28 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:date:message-id:subject:from:to :content-type; bh=BE0/nefxnKcXgpZbtdRzgBg1Lrb/t4UoBT/jkVvVSZ4=; b=c7uuNqWiR4OxSt6bm8GP8gK12ItpbR33xHy+kbtwARDNs+I3vHuosBbC+sPCXwYobk BtjgNbl+asCo6uYw4TRfS08h9L9SEbjbx93JY0NHqVMQkguQEnwQ9LPVvN+9bmnoLAB6 lILhTeeRSNzWDHTzYpoR0xF98x3/vszEfCa79ivjfB1gj9mX+GM5bRNrjPKf03mhqRAq GjiKc5E3eVlNyK6I3QR+BI4dtj67/FBIwNFNsUpoK6nowxeQeSEUoAOC6Wu5hQowQcjU o2LX+Kvw3efHaSM0uEf7lowveePcjeXZTe6zoL84oBSOvyzJ95/iT3oybnb6/GJF9R3J ERCA== MIME-Version: 1.0 X-Received: by 10.15.83.73 with SMTP id b49mr10190019eez.25.1365460888131; Mon, 08 Apr 2013 15:41:28 -0700 (PDT) Received: by 10.14.138.73 with HTTP; Mon, 8 Apr 2013 15:41:28 -0700 (PDT) Date: Mon, 8 Apr 2013 18:41:28 -0400 Message-ID: Subject: CVE-2010-5107 From: Robert Simmons To: freebsd-security Content-Type: text/plain; charset=ISO-8859-1 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Apr 2013 22:41:29 -0000 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5107 http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/sshd_config.diff?r1=1.88;r2=1.89;f=h I see that the fix for this CVE was recently pulled into HEAD: http://svnweb.freebsd.org/base/head/crypto/openssh/sshd_config?r1=248465&r2=248619 But not yet in stable: http://svnweb.freebsd.org/base/stable/9/crypto/openssh/sshd_config?revision=248468&view=markup Is this change going to be an update to 9.1? From owner-freebsd-security@FreeBSD.ORG Thu Apr 11 16:07:28 2013 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 990EA483 for ; Thu, 11 Apr 2013 16:07:28 +0000 (UTC) (envelope-from simon@qxnitro.org) Received: from mail-we0-x22b.google.com (mail-we0-x22b.google.com [IPv6:2a00:1450:400c:c03::22b]) by mx1.freebsd.org (Postfix) with ESMTP id 2C44B5E8 for ; Thu, 11 Apr 2013 16:07:28 +0000 (UTC) Received: by mail-we0-f171.google.com with SMTP id d46so1396480wer.16 for ; Thu, 11 Apr 2013 09:07:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=qxnitro.org; s=google; h=x-received:sender:message-id:date:from:organization:user-agent :mime-version:to:subject:x-enigmail-version:content-type; bh=8FL3N8305sDfCGBGPQIgcrNfsI+lRW8pW9n74VrC25Q=; b=adZ+zuUeSaF5qGRo4nfN+Jhp01pzISBylxn9RRWQFYv+9nIvGvpoZOQ4rbGYYyS/7+ zSU6BEMpnWR3Rt0aPn0NgnnS8V7iRQOVQPMspFs1CrAtibAmpyZLrqw/+I2XcLqC52HC ZNmn5rZMOfMVxjcczlbM6sNFrpHqVpVS2vOUg= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:sender:message-id:date:from:organization:user-agent :mime-version:to:subject:x-enigmail-version:content-type :x-gm-message-state; bh=8FL3N8305sDfCGBGPQIgcrNfsI+lRW8pW9n74VrC25Q=; b=eE1crykrRh88fQsWDsvQtg1zdAyv1H+cA56QzEE0GL6f4hQw+w509s4hSXbp0Zv61q NGhCB4gz0pfh1R4tmNvt11mFGePhh9ncU4HBFRaBQ3S5bH7xO+zs+l5iTfP9V4b74OxF oZ/OP/avjoKWQce9eET9cx4eLEW6strXNtIcgw1pqd3Z27Fwdsx2p+70iDBmbeSFV5Dg GTeT5HmCfR5lsKCpGN3rYxqW4BXXk1yAH37wdpjdrlu/vOvCQtHA0JFMThI8tCisIGTE DpuHeiZiLZZhtTSS8d7ELfB3RI5HkdZmhMmWn+7rm34SHQXD6h9sLCwkixroyqQTmZw9 zEXA== X-Received: by 10.180.82.33 with SMTP id f1mr34963087wiy.13.1365696447366; Thu, 11 Apr 2013 09:07:27 -0700 (PDT) Received: from zaphod.local ([74.125.61.170]) by mx.google.com with ESMTPS id bj9sm3999091wib.4.2013.04.11.09.07.25 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Thu, 11 Apr 2013 09:07:26 -0700 (PDT) Sender: "Simon L. B. Nielsen" Message-ID: <5166DFBD.2020603@FreeBSD.org> Date: Thu, 11 Apr 2013 17:07:25 +0100 From: "Simon L. B. Nielsen" Organization: FreeBSD Security Team User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:17.0) Gecko/20130307 Thunderbird/17.0.4 MIME-Version: 1.0 To: freebsd-security@FreeBSD.org Subject: New Security Officer X-Enigmail-Version: 1.5.1 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="----enig2OPPJJOVEBXFLAHRRMBGN" X-Gm-Message-State: ALoCoQnIaEw1p3yFt7KxjNkXbAc7pDuDyxz7WZs8YDAWr/z809ljmRu7hmoelA+dCLmYkDHCc4YI X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Apr 2013 16:07:28 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) ------enig2OPPJJOVEBXFLAHRRMBGN Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Hello all, I have been part of the FreeBSD Security Team for a long time and I don't= plan to change that, but I have come to realize that I don't have enough= time to give the FreeBSD Security Officer role the needed attention. The= refor I'm resigning as Security Officer so I can focus on other parts of = my involvement with the FreeBSD project. I'm very please to announce that Dag-Erling Sm=C3=B8grav (des) has offere= d to take over as FreeBSD Security Officer, and the FreeBSD Core Team has= approved this. Dag-Erling has been on the Security Team for many years, = though he have had break before he rejoined the Security Team last fall. = I'm confident he will be a great Security Officer. Colin Percival and I will both stay on as FreeBSD Security Officer Emerit= us for the time being. I would like to thank the FreeBSD Security Team for their work to help me= during my time as FreeBSD Security Officer. --=20 Regards, Simon L. B. Nielsen FreeBSD Security Officer Emeritus ------enig2OPPJJOVEBXFLAHRRMBGN Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlFm370ACgkQFdaIBMps37KBVQCdEM0UCj9up/2IDxlziP3QFn74 amMAniXqJ19G/xPxN0D6GwRiS7WP4zP+ =2U+c -----END PGP SIGNATURE----- ------enig2OPPJJOVEBXFLAHRRMBGN-- From owner-freebsd-security@FreeBSD.ORG Thu Apr 11 17:01:07 2013 Return-Path: Delivered-To: freebsd-security@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 03D85EA9; Thu, 11 Apr 2013 17:01:07 +0000 (UTC) (envelope-from des@des.no) Received: from smtp.des.no (smtp.des.no [194.63.250.102]) by mx1.freebsd.org (Postfix) with ESMTP id BE260A3D; Thu, 11 Apr 2013 17:01:06 +0000 (UTC) Received: from ds4.des.no (smtp.des.no [194.63.250.102]) by smtp-int.des.no (Postfix) with ESMTP id E482F804B; Thu, 11 Apr 2013 17:01:05 +0000 (UTC) Received: by ds4.des.no (Postfix, from userid 1001) id AFC1899C8; Thu, 11 Apr 2013 19:01:05 +0200 (CEST) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: "Simon L. B. Nielsen" Subject: Re: New Security Officer References: <5166DFBD.2020603@FreeBSD.org> Date: Thu, 11 Apr 2013 19:01:05 +0200 In-Reply-To: <5166DFBD.2020603@FreeBSD.org> (Simon L. B. Nielsen's message of "Thu, 11 Apr 2013 17:07:25 +0100") Message-ID: <86obdl6lym.fsf@ds4.des.no> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.2 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: freebsd-security@FreeBSD.org X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Apr 2013 17:01:07 -0000 I would like to thank Simon for his service as Security Officer and his continued contribution to the Security Team. A few other people also deserve thanks: Bj=C3=B6rn Zeeb (bz), who served as Deputy Security Officer for close to two years, and Remko Lodder (remko), who's been the Security Team Secretary since the position was created in 2006. Both stepped down recently, and they have been replaced by Xin Li (delphij) and George Neville-Neil (gnn). DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no From owner-freebsd-security@FreeBSD.ORG Sat Apr 13 18:29:54 2013 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 6D6FCBF7 for ; Sat, 13 Apr 2013 18:29:54 +0000 (UTC) (envelope-from petur@petur.eu) Received: from mail-la0-x236.google.com (mail-la0-x236.google.com [IPv6:2a00:1450:4010:c03::236]) by mx1.freebsd.org (Postfix) with ESMTP id EB8D2F6E for ; Sat, 13 Apr 2013 18:29:53 +0000 (UTC) Received: by mail-la0-f54.google.com with SMTP id ec20so3378137lab.27 for ; Sat, 13 Apr 2013 11:29:52 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:from:content-type:subject:message-id:date:to :mime-version:x-mailer:x-gm-message-state; bh=3Q/WrTA/u8Dyqwami+4x1tXhFBQ/5fweagPIAWX1Ye4=; b=XzYoXcoE+7ctWA7gf373jyezncjZSwHP72AZC1I+IeMwPxTUppSO9gFZuxLdDWFfTm Jc0z7EgDXjfvHuapYXuyMXBwwwdC6UZHxalej/ZRoBTgcPQZnauFHss/tdhMXz7Jf+e/ Xr3g5xBEj8a41I/sOKVCZroG6k2YjwiYvwuBBp6IulVt/+CNF2KX4OJxZrdr3paD7m9H y960b8DDzUy/iCn+yKnOITPYrGehoJNWwkKfiHMsXFZel8NqrKxskPNTGGX77crEEVBQ EnwLkMW/KAEjcchoD8DiTUSOimhG8ix1T5nLEGv3T6F+0UUfICaquxFaGedjY3zDjdiZ NwFA== X-Received: by 10.152.19.105 with SMTP id d9mr7641701lae.3.1365877792520; Sat, 13 Apr 2013 11:29:52 -0700 (PDT) Received: from [10.0.0.3] ([130.225.243.68]) by mx.google.com with ESMTPS id 10sm5256310laq.8.2013.04.13.11.29.51 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sat, 13 Apr 2013 11:29:51 -0700 (PDT) From: =?iso-8859-1?Q?P=E9tur_Ingi_Egilsson?= Subject: File descriptors Message-Id: Date: Sat, 13 Apr 2013 20:29:52 +0200 To: freebsd-security@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 6.3 \(1503\)) X-Mailer: Apple Mail (2.1503) X-Gm-Message-State: ALoCoQkaQ+61ndkozxyWoxD2Si0JazIf9+Pl7+KFk8yV6kVp5CQYi3y7AvXQ/FiVvBnktaugKOJZ X-Mailman-Approved-At: Sat, 13 Apr 2013 23:27:31 +0000 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.14 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 13 Apr 2013 18:29:54 -0000 I noticed that if I execute the following code, then the program is able = to read the file even if the files' permissions are changed around the = /mark/ section in such a way that the UID under which the program is = running should not have any permission to read the file. This is not a desirable behaviour. How can I prevent this behaviour on my system? #include #include int main(int argc, char **argv) { if (argc !=3D 2) { printf("Usage: %s filename\n", argv[0]); exit(EXIT_FAILURE); } FILE *fd; char *line =3D NULL; size_t len =3D 0; fd =3D fopen(argv[2], "r"); /* mark */ if (fd =3D=3D NULL) { exit(EXIT_FAILURE); } while (getline(&line, &len, fd) !=3D -1) { printf("%s", line); } fclose(fd); exit(EXIT_SUCCESS); }