Diaspora Handle: masternetra@diasp.org
Are you referring to bugs that are linked from upstream bug trackers in launchpad? If so, then yes sometimes those can be marked as fixed before it makes it into Ubuntu, but I see no such link in that bug report.
I think you're confusing some of the bug status. https://wiki.ubuntu.com/Bugs/Status
Blog | Ubuntu User #15350 | Zsh FTW | Ubuntu Security | Nothing to hide?
AMD Phenom II X6 1075T @ 3GHz, Nvidia GTX 650, 8GB DDR3 RAM, 1 X 1TB, 2 X 3TB HDD
Please don't request support via PM
Not sure, but when I tried sysctl vm.mmap_min_addr on my Karmic system (with wine installed), it returned 0 which means it would be vulnerable. Whether or not it really is vulnerable is another question, because a default Ubuntu installation has no root account.
BTW, it looks like a diligent member of our community has reported it:
https://bugs.launchpad.net/ubuntu/+s...mu/+bug/401950
So with dosemu or wine installed, it could be (not necessarily is) vulnerable, but I'll leave that to be answered by a member of the security team or other appropriately educated persons.
Last edited by samjh; November 7th, 2009 at 12:39 AM.
Blog | Ubuntu User #15350 | Zsh FTW | Ubuntu Security | Nothing to hide?
AMD Phenom II X6 1075T @ 3GHz, Nvidia GTX 650, 8GB DDR3 RAM, 1 X 1TB, 2 X 3TB HDD
Please don't request support via PM
I uninstalled Wine, rebooted, and ran this code
cat /proc/sys/vm/mmap_min_addr
and still got a 0. Do I need to be concerned? I can't find how to take care of this problem anywhere, does anyone on here know how?
Thanks
Andy
Apparently yes for as long as it is zero. However there is a fix and you can still theoretically run Wine.
According to: http://www.itworld.com/security/8391...tant-linux-fix
All you have to do is sudo the command (sense just entering yields our favorite insufficient access reply):
however the 1024 can be any number up to 65535. This fix however is only good until you reboot. Though I suppose you could setup a script or something. How you would do a script for a limited account I have no clue.Code:sysctl -w vm.mmap_min_addr="1024"
Last edited by MasterNetra; November 9th, 2009 at 05:49 PM.
Diaspora Handle: masternetra@diasp.org
This is the first age that's paid much attention to the future, which is a little ironic since we may not have one.
-- Arthur C. Clarke
Bookmarks