Date: Wed, 26 Jun 2002 18:08:45 -0700 (PDT) From: Brian Behlendorf <brian@hyperreal.org> To: Brett Glass <brett@lariat.org> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:28.resolv Message-ID: <20020626180540.G310-100000@yez.hyperreal.org> In-Reply-To: <4.3.2.7.2.20020626143023.022716c0@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 26 Jun 2002, Brett Glass wrote:
> At 01:26 PM 6/26/2002, H. Wade Minter wrote:
>
> >So am I correct in assuming that this fix requires a complete system
> >rebuild (make buildworld) as opposed to just rebuilding a particular
> >module?
>
> Worse than that. Every package or port must be reinstalled
> or rebuilt too. Ditto everything you've built from source.
> Basically, the entire system must be ripped up by the roots.
Not as I understand it. It's just those programs that statically link in
libc at compile time. And if you rebuild world, you only have to worry
about packages/ports.
After running file on every third-party executable on a couple systems I
manage, only a few turned up as possible candidates; rebuilding them was
pretty straightforward, except for bash2 and rpm whose ports don't appear
to compile currently.
I simply ran:
find /usr/local/ -exec file \{\} \; | fgrep static
to narrow down the search. Add other dirs you may install software in.
Brian
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020626180540.G310-100000>