I do not see the issue on KVM i386.
For completeness, on all tests I also saw this error -- which I assumed
to be a coding error on QRT:
/proc/$pid/ DAC bypass on setuid (CVE-2011-1020) ... (skipped: not
fixed before Oneiric yet) FAIL
======================================================================
FAIL: /proc/$pid/ DAC bypass on setuid (CVE-2011-1020)
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 1339, in test_101_proc_fd_leaks
self.assertShellOutputContains(bad[name],
['sudo','-u',os.environ['SUDO_USER'],"sh","-c","echo '' | ./dac-bypass.py %s" %
(name)], invert=expected)
File "/home/ubuntu/qrt-test-kernel/testlib.py", line 903, in
assertShellOutputContains
self.assertTrue(text in out, msg + result + report)
AssertionError: Got exit code 10. Looking for text " 0x"
Command: 'sudo', '-u', 'ubuntu', 'sh', '-c', 'echo '' | ./dac-bypass.py syscall'
Output:
Traceback (most recent call last):
File "./dac-bypass.py", line 37, in <module>
files[name] = file('/proc/%d/%s' % (target, name))
IOError: [Errno 2] No such file or directory: '/proc/18730/syscall'
(current) UNIX password: passwd: Authentication failure
passwd: password unchanged
Changing password for ubuntu.
----------------------------------------------------------------------
Ran 49 tests in 28.108s
FAILED (failures=1)
** CVE added: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2011-1020
** Changed in: kernel-sru-workflow/regression-testing
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/812360
Title:
linux: 2.6.24-29.92 -proposed tracker
To manage notifications about this bug go to:
https://bugs.launchpad.net/kernel-sru-workflow/+bug/812360/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
