From owner-freebsd-security  Fri Jan 15 12:31:54 1999
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id MAA06976
          for freebsd-security-outgoing; Fri, 15 Jan 1999 12:31:54 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from frmug.org (frmug-gw.frmug.org [193.56.58.252])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA06962
          for <freebsd-security@FreeBSD.ORG>; Fri, 15 Jan 1999 12:31:47 -0800 (PST)
          (envelope-from roberto@keltia.freenix.fr)
Received: (from uucp@localhost)
	by frmug.org (8.9.1/frmug-2.3/nospam) with UUCP id VAA13923
	for freebsd-security@FreeBSD.ORG; Fri, 15 Jan 1999 21:31:26 +0100 (CET)
	(envelope-from roberto@keltia.freenix.fr)
Received: by keltia.freenix.fr (Postfix, from userid 101)
	id A859F1573; Fri, 15 Jan 1999 20:37:31 +0100 (CET)
Date: Fri, 15 Jan 1999 20:37:31 +0100
From: Ollivier Robert <roberto@keltia.freenix.fr>
To: freebsd-security@FreeBSD.ORG
Subject: Re: Secuity hole with perl (suidperl) and nosuid mounts on Linux (fwd)
Message-ID: <19990115203731.A13815@keltia.freenix.fr>
Mail-Followup-To: freebsd-security@FreeBSD.ORG
References: <199901151254.NAA00746@CoDe.hu> <19990115054837.A2069@best.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.95i
In-Reply-To: <19990115054837.A2069@best.com>; from Jan B. Koum  on Fri, Jan 15, 1999 at 05:48:37AM -0800
X-Operating-System: FreeBSD 3.0-CURRENT/ELF ctm#4931 AMD-K6 MMX @ 200 MHz
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

According to Jan B. Koum :
> 	I already sent an eMail to the author and bugtraq which just said
> 	that this is documented in FreeBSD man page is not at all new.

Before 5.004_04 was due, I submitted a patch to perl5-porters,
unfortunately 1. it was too late for release and 2. it was too FreeBSD
specific. 

There was talk to expand the patch for other OSes but it got lost somehow
on the list.

The patch is in perl5's ports in /usr/ports/lang/perl5 anyway and in
contrib/perl5.

See /usr/ports/lang/perl5/patches/patch-ad.
-- 
Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr
FreeBSD keltia.freenix.fr 3.0-CURRENT #67: Tue Dec 29 20:24:02 CET 1998


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message