From owner-doc-jp@jp.freebsd.org  Sun May 28 16:13:02 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id QAA77320;
	Sun, 28 May 2000 16:13:02 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from smtp03.246.ne.jp (smtp03.246.ne.jp [210.253.192.37])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with SMTP id QAA77315
	for <doc-jp@jp.freebsd.org>; Sun, 28 May 2000 16:13:02 +0900 (JST)
	(envelope-from y-koga@jp.FreeBSD.org)
Received: (qmail 13558 invoked by alias); 28 May 2000 16:13:00 +0900
Message-ID: <20000528071300.13557.qmail@smtp.246.ne.jp>
Received: (qmail 13547 invoked from network); 28 May 2000 16:12:59 +0900
Received: from tp4hr064.246.ne.jp (HELO localhost) (210.253.193.64)
  by smtp.246.ne.jp with SMTP; 28 May 2000 16:12:59 +0900
To: doc-jp@jp.freebsd.org
In-Reply-To: <200005270411.NAA10581@iris.dti.ne.jp>
References: <20000526173223.4DB1C37BE94@hub.freebsd.org>
	<200005270411.NAA10581@iris.dti.ne.jp>
	<200005271338.WAA23170@mail.geocities.co.jp>
X-Mailer: Mew version 1.94.2 on Emacs 19.28 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Sun, 28 May 2000 16:12:57 +0900
From: Koga Youichirou <y-koga@jp.freebsd.org>
X-Dispatcher: imput version 20000228(IM140)
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: doc-jp 7420
Subject: [doc-jp 7420] Re: ANNOUNCE: FreeBSD Security Advisory:
 FreeBSD-SA-00:19.semconfig
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: y-koga@jp.freebsd.org

dais@iris.dti.ne.jp (Daisuke Higashi):
> FreeBSD-SA-00:19.semconfig $B$G$9!#%R%^$@$C$?$N$G>!<j$KLu$7$^$7$?!#(B

$B$Q$A$Q$A$Q$A!y(B

> =============================================================================
> FreeBSD-SA-00:19                                           Security Advisory
>                                                                 FreeBSD, Inc.

> $B%H%T%C%/(B:        $B%m!<%+%k%f!<%6$,$9$Y$F$N%W%m%;%9$N=*N;$rAK;_$G$-$k(B

$B$$$D$b$OLu$7$F$$$J$$$G$9$M!#$I$A$i$,$$$$$N$+$J$!!#(B

> I.   $BGX7J(B - Background
> 
> System V IPC is a set of interfaces for providing inter-process
> communication, in the form of shared memory segments, message queues
> and semaphores.
> System V IPC $B$O!"%W%m%;%94VDL?.$r6&M-%a%b%j%;%0%a%s%H!"(B
> $B%a%C%;!<%8%-%e!<!"%;%^%U%)$N7A$GDs6!$9$k%$%s%?%U%'%$%972$G$9!#(B

interface $B$O$I$&$$$&I=5-$9$k$s$@$C$?$C$1!)(B

> II.  $BLdBj$N>\:Y(B - Problem Description
> 
> An undocumented system call is incorrectly exported from the kernel
> without access-control checks.
> $B%I%-%e%a%s%H2=$5$l$F$$$J$$%7%9%F%`%3!<%k$,!"%"%/%;%9@)8f$N(B
> $B%A%'%C%/$rDL$5$:$KIT@5$K%(%/%9%]!<%H$5$l$F$$$^$9!#(B

$B0ULu$7$F!"!V%"%/%;%9@)8f$N!DIT@5$K%+!<%M%k$+$i%(%/%9%]!<%H$5$l$F$$$k%7(B
$B%9%F%`%3!<%k$,$"$j$^$9!#$3$N%7%9%F%`%3!<%k$O%I%-%e%a%s%H$K$O5-=R$5$l$F(B
$B$$$^$;$s!#!W$NJ}$,F|K\8l$H$7$F$O<+A3$+$J!#!V%(%/%9%]!<%H!W$b$J$s$H$+$7(B
$B$?$$$H$3$m$@$1$I!#(B

> This operation causes the acquisition
> in the kernel of a global semaphore which causes all processes on the
> system to block during exit() handling,
> $B$3$N%7%9%F%`%3!<%k$NA`:n$K$h$j!"(Bexit() $B$N%O%s%I%j%s%0;~$K(B

$B!V%O%s%I%j%s%0;~!W"*!V=hM}$N:]!W(B
$B$"$H$O:4F#$5$s$NJQ99J,$r:N$jF~$l$l$P$$$$$H;W$&!#(B

> III. $B1F6AHO0O(B - Impact
> 
> An unprivileged local user can cause every process on the system to
> hang during exiting.
> $BHsFC8"%f!<%6$,%7%9%F%`>e$N$9$Y$F$N%W%m%;%9$KBP$7$F(B
> $B$=$N=*N;=hM}Cf$K%O%s%0$5$;$k$3$H$,$G$-$^$9!#(B
 |$BHsFC8"%f!<%6$O(B, $B%7%9%F%`>e$N$9$Y$F$N%W%m%;%9$KBP$7$F(B
 |$B$=$N=*N;=hM}Cf$K(B, $B=hM}$rDd;_$5$;$k$3$H$,$G$-$^$9(B.

$B$I$A$i$b(B local $B$,Lu=P$5$l$F$$$^$;$s$,!"1F6AHO0O$r5-=R$9$k:]$K$O(B local 
$B$+(B remote $B$+$rL@3N$K$9$k$3$H$O=EMW$G$9!#(B

> V.   $B=$@5=hCV(B - Solution  
> 
> Upgrade to FreeBSD 2.1.7.1-STABLE, 2.2.8-STABLE, 3.4-STABLE,
> 4.0-STABLE or 5.0-CURRENT after the correction date.
> $B=$@5F|0J9_$K(B FreeBSD 2.1.7.1-STABLE$B!"(B2.2.8-STABLE$B!"(B3.4-STABLE$B!"(B4.0-STABLE
> $B$^$?$O(B 5.0-CURRENT $B$X%"%C%W%0%l!<%I$7$F$/$@$5$$!#(B

the correction date $B$O!"(B

> Corrected:	2000-05-01

$B$N$3$H$G$9$N$G!"!V=$@5F|0J9_$K!W$G$O$J$/$F!V=$@5F|0J9_$N!W$G$9!#(B

> 1) Save this advisory as a file, and run the following commands as root:
> 1) $B$3$N9pCN$r%U%!%$%k$K%;!<%V$7!"(Broot $B$G<!$N%3%^%s%I$r<B9T$7$F$/$@$5$$(B:

advisory $B$ODL>o!V4+9p!W$HLu$5$l$^$9!#(B
$B!V%;!<%V!W"*!VJ]B8!W(B

> 2) Rebuild and reinstall the kernel and kernel modules as described in
> the FreeBSD handbook (see:
> http://www.freebsd.org/handbook/kernelconfig.html for more information)
> 2) FreeBSD $B%O%s%I%V%C%/(B
> ($B>\:Y$O(B http://www.freebsd.org/handbook/kernelconfig.html) $B$N@bL@$N(B
> $BDL$j$K%+!<%M%k$H%+!<%M%k%b%8%e!<%k$r%j%S%k%I$7!"%$%s%9%H!<%k$7$F$/$@$5$$!#(B

$B!V%j%S%k%I!W"*!V:F9=C[!W(B
----
$B$3$,$h$&$$$A$m$&(B
