HEADS UP: breakage with linux emulation + SA-11:05.unix

FreeBSD Security Officer cperciva at freebsd.org
Fri Sep 30 10:23:07 UTC 2011


Hi all,

It appears that the security fix in SA-11:05.unix exposed a bug in the linux
emulation code: Linux has a different size of sockaddr_un than FreeBSD, and
the linux emulation code was passing socket addresses through without doing
any translation first.

This appears to break all X-using Linux code -- both applications and plugins
such as the widely-used flash plugin -- and probably other Linux applications
too.

I am working on a fix for this and will send an updated advisory out as soon
as it's ready.

-- 
Colin Percival
Security Officer, FreeBSD | freebsd.org | The power to serve
Founder / author, Tarsnap | tarsnap.com | Online backups for the truly paranoid


More information about the freebsd-security mailing list