Bug#329090: util-vserver: barrier not working, but chroot escape does

[Andrew Lee]

Hi Ola, 在 2005/10/3 上午 1:54 時，Ola Lundqvist 寫到： How did you tested and found what kind of security problem? I assume you found you couldn't pass the test 109,121 of testfs.sh   script, right? Actually I run the rootesc program and saw that it was possible to escape. I think the rootesc program is only working for the bug in 2.4 kernel patches in Debian, for other fails in testfs.sh, I guess probably needs other exploit. I have upgraded to 0.30.208-2, I still got the same fails on i386,   but no errors on powerpc after I rebuilt the util-vserver package   from source. Ahh now I see. Missed that you used different architectures in your testing. Yes, that's why I have another powerpc related bug report. Sorry for the confusion, I will help to test on i386 and powerpc for you. I wonder why it do not fail after your rebuild. Maybe it pass only if I compile on a vserver patched system... Could you please confirm this? Maybe, I should recompile the kernel patch+tools on i386 with a vserver 2.0 patched system, cause I got fails on 2.6.12 and util-vserver 0.30.208-2 from sid still, but all pass with same version from sid on powerpc after a rebuild of util-vserver package. -Andrew