sudo through ssh broken on -current?
Dimitry Andric
dim at FreeBSD.org
Mon Mar 12 14:12:25 UTC 2012
On 2012-03-12 00:55, Michael Butler wrote:
> I noted some thing odd when executing the following ..
>
> /home/imb> ssh imb at xxxx "sudo /sbin/ipfw list"
>
> sudo: (malloc) /usr/src/lib/libc/stdlib/malloc.c:2644: Failed assertion:
> "(run->regs_mask[elm] & (1U << bit)) == 0"
> Abort
>
> Adding '-t' as a parameter to ssh runs without the assert,
This is a double free bug in sudo:
http://www.sudo.ws/bugs/show_bug.cgi?id=544
Alternative fix:
http://www.andric.com/freebsd/security-sudo-fix-double-free-1.diff
More information about the freebsd-current
mailing list