headers
Marcel Meckel | 23 Apr 2005 10:32
Picon

grsecurity/stack smashing attack

Hi,

cone doesn't work with grsecurity? While trying to read a message via
IMAPS:

cone: stack smashing attack in function bool
mail::imapFOLDER_COUNT::fillbodystructure(mail::imap&,
mail::imapparsefmt&, mail::mimestruct&, std::basic_string<char,
std::char_traits<char>, std::allocator<char> >)()
Terminated

grsec: From xx.xx.xx.xx: signal 6 sent to
/usr/libexec/cone[cone:25947] uid/euid:1000/1000 gid/egid:1000/1000,
parent /bin/bash[bash:15441] uid/euid:1000/1000 gid/egid:1000/1000

Could this be fixed easily in cone without dropping grsec from the
running kernel?

Greetings,
Marcel.

--

-- 
Registrierter Linux User #307343

-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
(Continue reading)

Permalink | Reply | 1 comment |
headers
Sam Varshavchik | 23 Apr 2005 14:06
Gravatar

Re: grsecurity/stack smashing attack

Marcel Meckel writes:

> Hi,
> 
> cone doesn't work with grsecurity? While trying to read a message via
> IMAPS:
> 
> cone: stack smashing attack in function bool
> mail::imapFOLDER_COUNT::fillbodystructure(mail::imap&,
> mail::imapparsefmt&, mail::mimestruct&, std::basic_string<char,
> std::char_traits<char>, std::allocator<char> >)()
> Terminated
> 
> grsec: From xx.xx.xx.xx: signal 6 sent to
> /usr/libexec/cone[cone:25947] uid/euid:1000/1000 gid/egid:1000/1000,
> parent /bin/bash[bash:15441] uid/euid:1000/1000 gid/egid:1000/1000
> 
> Could this be fixed easily in cone without dropping grsec from the
> running kernel?

Maybe, if there's some indication of what the problem is.  The above does 
not give any useful information about the problem.
Permalink | Reply | 0 comments |

Gmane