Your message dated Tue, 30 Sep 2008 09:18:24 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#493234: fixed in libpam-mount 0.48-1
has caused the Debian Bug report #493234,
regarding su: double free or corruption
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
493234: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=493234
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: libpam-mount
Version: 0.43-1
Severity: normal
After the upgrade to libpam0g 1.0.1-1 I noticed another problem with
libpam-mount 0.43-1. I am not absolutely sure if it was present with
libpam0g 0.99.7.1-7 but it does not occour if I do not use libpam-mount.
It happens when I terminate a su session.
*** glibc detected *** su: double free or corruption (fasttop): 0x081e3f50 ***
======= Backtrace: =========
/lib/libc.so.6[0xb7eb2825]
/lib/libc.so.6(cfree+0x9c)[0xb7eb46cc]
/lib/security/pam_mount.so[0xb7c4cf17]
/lib/libpam.so.0[0xb7f8acba]
/lib/libpam.so.0(pam_end+0x39)[0xb7f8b849]
su[0x8049cf7]
su[0x804b617]
/lib/libc.so.6(__libc_start_main+0xe5)[0xb7e5e455]
su(misc_conv+0x22d)[0x80499b1]
======= Memory map: ========
08048000-0804e000 r-xp 00000000 03:06 387979 /bin/su
0804e000-0804f000 rw-p 00006000 03:06 387979 /bin/su
0804f000-08053000 rw-p 0804f000 00:00 0
081d0000-081f1000 rw-p 081d0000 00:00 0 [heap]
b7800000-b7821000 rw-p b7800000 00:00 0
b7821000-b7900000 ---p b7821000 00:00 0
b793a000-b7946000 r-xp 00000000 03:06 533289 /lib/libgcc_s.so.1
b7946000-b7947000 rw-p 0000b000 03:06 533289 /lib/libgcc_s.so.1
b794f000-b7956000 r--s 00000000 03:06 582159
/usr/lib/gconv/gconv-modules.cache
b7956000-b797a000 r-xp 00000000 03:06 533398 /lib/libm-2.7.so
b797a000-b797c000 rw-p 00023000 03:06 533398 /lib/libm-2.7.so
b797c000-b7990000 r-xp 00000000 03:06 582277 /usr/lib/libz.so.1.2.3.3
b7990000-b7991000 rw-p 00013000 03:06 582277 /usr/lib/libz.so.1.2.3.3
b7991000-b7aaa000 r-xp 00000000 03:06 581775 /usr/lib/libxml2.so.2.6.32
b7aaa000-b7aaf000 rw-p 00119000 03:06 581775 /usr/lib/libxml2.so.2.6.32
b7aaf000-b7ab0000 rw-p b7aaf000 00:00 0
b7ab0000-b7be1000 r-xp 00000000 03:06 598106
/usr/lib/i686/cmov/libcrypto.so.0.9.8
b7be1000-b7bf7000 rw-p 00131000 03:06 598106
/usr/lib/i686/cmov/libcrypto.so.0.9.8
b7bf7000-b7bfa000 rw-p b7bf7000 00:00 0
b7bfa000-b7c3b000 r-xp 00000000 03:06 598110
/usr/lib/i686/cmov/libssl.so.0.9.8
b7c3b000-b7c3f000 rw-p 00040000 03:06 598110
/usr/lib/i686/cmov/libssl.so.0.9.8
b7c3f000-b7c48000 r-xp 00000000 03:06 582919 /usr/lib/libHX.so.13.0.0
b7c48000-b7c49000 rw-p 00009000 03:06 582919 /usr/lib/libHX.so.13.0.0
b7c49000-b7c57000 r-xp 00000000 03:06 533288 /lib/security/pam_mount.so
b7c57000-b7c5a000 rw-p 0000e000 03:06 533288 /lib/security/pam_mount.so
b7c5a000-b7c5f000 rw-p b7c5a000 00:00 0
b7c5f000-b7c68000 r-xp 00000000 03:06 533394 /lib/libcrypt-2.7.so
b7c68000-b7c6a000 rw-p 00008000 03:06 533394 /lib/libcrypt-2.7.so
b7c6a000-b7c91000 rw-p b7c6a000 00:00 0
b7c96000-b7c99000 r--p 00000000 03:06 583467
/usr/share/locale/de/LC_MESSAGES/Linux-PAM.mo
b7c99000-b7ca5000 r-xp 00000000 03:06 533711 /lib/security/pam_unix.so
b7ca5000-b7ca6000 rw-p 0000b000 03:06 533711 /lib/security/pam_unix.so
b7ca6000-b7cb2000 rw-p b7ca6000 00:00 0
b7cb2000-b7cc9000 r-xp 00000000 03:06 533294 /lib/libselinux.so.1
b7cc9000-b7ccb000 rw-p 00016000 03:06 533294 /lib/libselinux.so.1
b7ccd000-b7ccf000 r-xp 00000000 03:06 533710 /lib/security/pam_umask.so
b7ccf000-b7cd0000 rw-p 00001000 03:06 533710 /lib/security/pam_umask.so
b7cd0000-b7cd2000 r-xp 00000000 03:06 533449 /lib/security/pam_mail.so
b7cd2000-b7cd3000 rw-p 00001000 03:06 533449 /lib/security/pam_mail.so
b7cd3000-b7cdc000 r-xp 00000000 03:06 533424 /lib/libnss_files-2.7.so
b7cdc000-b7cde000 rw-p 00008000 03:06 533424 /lib/libnss_files-2.7.so
b7cde000-b7ce6000 r-xp 00000000 03:06 533534 /lib/libnss_nis-2.7.so
b7ce6000-b7ce8000 rw-p 00007000 03:06 533534 /lib/libnss_nis-2.7.so
b7ce8000-b7cfb000 r-xp 00000000 03:06 533419 /lib/libnsl-2.7.so
b7cfb000-b7cfd000 rw-p 00012000 03:06 533419 /lib/libnsl-2.7.so
b7cfd000-b7cff000 rw-p b7cfd000 00:00 0
b7cff000-b7d06000 r-xp 00000000 03:06 533420 /lib/libnss_compat-2.7.so
b7d06000-b7d08000 rw-p 00006000 03:06 533420 /lib/libnss_compat-2.7.so
b7d08000-b7e42000 r--p 00000000 03:06 597951 /usr/lib/locale/locale-archive
b7e42000-b7e43000 rw-p b7e42000 00:00 0
b7e43000-b7e45000 r-xp 00000000 03:06 533395 /lib/libdl-2.7.so
b7e45000-b7e47000 rw-p 00001000 03:06 533395 /lib/libdl-2.7.so
b7e47000-b7e48000 rw-p b7e47000 00:00 0
b7e48000-b7f80000 r-xp 00000000 03:06 533388 /lib/libc-2.7.so
b7f80zsh: abort su
--
GMX startet ShortView.de. Hier findest Du Leute mit Deinen Interessen!
Jetzt dabei sein: http://www.shortview.de/[EMAIL PROTECTED]
--- End Message ---
--- Begin Message ---
Source: libpam-mount
Source-Version: 0.48-1
We believe that the bug you reported is fixed in the latest version of
libpam-mount, which is due to be installed in the Debian FTP archive:
libpam-mount_0.48-1.diff.gz
to pool/main/libp/libpam-mount/libpam-mount_0.48-1.diff.gz
libpam-mount_0.48-1.dsc
to pool/main/libp/libpam-mount/libpam-mount_0.48-1.dsc
libpam-mount_0.48-1_amd64.deb
to pool/main/libp/libpam-mount/libpam-mount_0.48-1_amd64.deb
libpam-mount_0.48.orig.tar.gz
to pool/main/libp/libpam-mount/libpam-mount_0.48.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Bastian Kleineidam <[EMAIL PROTECTED]> (supplier of updated libpam-mount
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 28 Sep 2008 19:50:41 +0200
Source: libpam-mount
Binary: libpam-mount
Architecture: source amd64
Version: 0.48-1
Distribution: unstable
Urgency: high
Maintainer: Bastian Kleineidam <[EMAIL PROTECTED]>
Changed-By: Bastian Kleineidam <[EMAIL PROTECTED]>
Description:
libpam-mount - PAM module that can mount volumes for a user session
Closes: 493234 494107 497813 499841
Changes:
libpam-mount (0.48-1) unstable; urgency=high
.
* New upstream release, using libhx >= 0.25.
- Prevents security flaw CVE-2008-3970 (thus urgency high) (Closes:
#499841)
- Prevents double free in "su" usage (Closes: #493234)
- Does "~" expanding in paths again (Closes: #497813)
- Print names of blocking processes on umount (Closes: #494107)
Checksums-Sha1:
334e887e63561878f518502c012390913604003a 1221 libpam-mount_0.48-1.dsc
e30d755db6e1c0c3786c466a29f5a5e86098454d 433641 libpam-mount_0.48.orig.tar.gz
702e1cba128c380706cdf89cca0f10a20efd3cfe 24840 libpam-mount_0.48-1.diff.gz
23f28f7de5716e5ea480c475c63a2b1e3f93eaaa 111860 libpam-mount_0.48-1_amd64.deb
Checksums-Sha256:
c83b3bc9927235cb84907e4d3d534daac43378d8502b8bf8d450e205b6470d3d 1221
libpam-mount_0.48-1.dsc
ed9ddbbc2fa5ab1e554dcc780d1a3e4a528a8ed44e30b690c00f4b25c98e7719 433641
libpam-mount_0.48.orig.tar.gz
61312bf18722c133f4da35b4c6dd0a6c4f8752e4168bb73830ddcd5c6b4d748e 24840
libpam-mount_0.48-1.diff.gz
bbdb19c383d3acf8cb83f1075b67069401194d6a901dc82822e38589b7dcdcd3 111860
libpam-mount_0.48-1_amd64.deb
Files:
f9178ac979dcfc0866827e4d96ba1503 1221 admin extra libpam-mount_0.48-1.dsc
8b891db48c030fef8e098aab38261cbd 433641 admin extra
libpam-mount_0.48.orig.tar.gz
3d77e2819126d703d51b1be5ae394a05 24840 admin extra libpam-mount_0.48-1.diff.gz
233a3d1a061e3173b1d54bb4bb08311e 111860 admin extra
libpam-mount_0.48-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkjhMmMACgkQeBwlBDLsbz567wCgppLPTRJvkkdsLoKjBOvRpvHJ
keoAoMHUX6mF3dkDy0MPrCQ5GRAnO+Ve
=88Mc
-----END PGP SIGNATURE-----
--- End Message ---
