[Bug 1441388] Re: numactl crashes with segfault
I have tested both the 14.04 and 14.10 packages [1], and they work great. Splendid work, Chris! -- [1] http://archive.ubuntu.com/ubuntu/pool/universe/n/numactl/numactl_2.0.9~rc5-1ubuntu3.14.04.1_amd64.deb http://archive.ubuntu.com/ubuntu/pool/universe/n/numactl/numactl_2.0.9~rc5-1ubuntu3.14.10.1_amd64.deb -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to numactl in Ubuntu. https://bugs.launchpad.net/bugs/1441388 Title: numactl crashes with segfault To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/numactl/+bug/1441388/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1441388] Re: numactl crashes with segfault
I've attached the debdiff with the fix. ** Patch added: "debdiff with upstream fix" https://bugs.launchpad.net/ubuntu/+source/numactl/+bug/1441388/+attachment/4369005/+files/numactl_2.0.9%7Erc5-1ubuntu4.debdiff -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to numactl in Ubuntu. https://bugs.launchpad.net/bugs/1441388 Title: numactl crashes with segfault To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/numactl/+bug/1441388/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1441388] Re: numactl crashes with segfault
A CVE hasn't been assigned. Presumably an attacker could manipulate the environment before an application's libnuma call to have the uninitialised pointer point to information in memory they'd like to extract, or cause a denial. If an application that gained privileges (capabilities, setuid etc) uses libnuma, this may allow access to move privileged data. That said, probably it would only be libvirt: $ apt-cache rdepends libnuma1 libnuma1 Reverse Depends: libvirt0 libvirt-bin libhwloc5 libvirt0 libvirt-bin libnuma1:i386 libnuma1:i386 crafty rt-tests procenv numactl libhwloc5 libvirt0 libvirt-bin libnuma-dev libnuma-dbg irqbalance -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to numactl in Ubuntu. https://bugs.launchpad.net/bugs/1441388 Title: numactl crashes with segfault To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/numactl/+bug/1441388/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1441388] [NEW] numactl crashes with segfault
Public bug reported: numactl sometimes crashes when enumerating hardware: root@node1:~# numactl --hardware available: 648 nodes (0-647) Segmentation fault Further analysis shows that libnuma is using an uninitialised pointer, which value depends on program layout. When layout is sufficiently different, the pointer is non-NULL and the library parses the data pointed to as a bitmap, crashing. Therefore, it is possible to leverage this in an exploit. I have fixed the issue upstream: https://github.com/numactl/numactl/commit/6a7c2cf3f00e32082a1ada300cc585740e2b4bbd ** Affects: numactl (Ubuntu) Importance: Undecided Status: New ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to numactl in Ubuntu. https://bugs.launchpad.net/bugs/1441388 Title: numactl crashes with segfault To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/numactl/+bug/1441388/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 40189] Re: autofs needs to be restarted to pick up some shares
This bug is still at large in Ubuntu 9.10, as observed on the desktop x86-64 variant. This may not be reproducible with 'static' configurations where the automount tables are configured in files, but when they are specified in nsswitch.conf as 'automount: ldap', this fails to initialise - restarting the autofs service is needed. If needed, let me know what area of detail is required to reproduce this. -- autofs needs to be restarted to pick up some shares https://bugs.launchpad.net/bugs/40189 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to autofs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 74164] Re: Request ntp-servers by default
I can confirm this works as expected with the updated dhcpd3-common and
-client packages from Jonathan's PPA - the DHCP lease now has the 'ntp-
servers' option [1], consequently NTP has picked it up [2].
What else do we need to move this to the next step?
--- [1]
$ cat /var/lib/dhcp3/dhclient.eth0.leases
lease {
interface "eth0";
fixed-address 192.168.20.87;
filename "linux-boot/pxelinux.0";
option subnet-mask 255.255.255.0;
option time-offset 0;
option routers 192.168.20.254;
option dhcp-lease-time 604800;
option dhcp-message-type 5;
option domain-name-servers 192.168.20.2,192.168.20.5;
option dhcp-server-identifier 192.168.20.2;
option dhcp-renewal-time 302400;
option ntp-servers 192.168.20.2;
option dhcp-rebinding-time 529200;
option netbios-name-servers 192.168.20.2;
option domain-name "quadrics.com";
renew 2 2009/03/24 10:05:00;
rebind 2 2009/03/24 10:05:00;
expire 2 2009/03/24 10:05:00;
}
lease {
interface "eth0";
fixed-address 192.168.20.87;
filename "linux-boot/pxelinux.0";
option subnet-mask 255.255.255.0;
option time-offset 0;
option routers 192.168.20.254;
option dhcp-lease-time 604800;
option dhcp-message-type 5;
option domain-name-servers 192.168.20.2,192.168.20.5;
option dhcp-server-identifier 192.168.20.2;
option dhcp-renewal-time 302400;
option ntp-servers 192.168.20.2;
option dhcp-rebinding-time 529200;
option netbios-name-servers 192.168.20.2;
option domain-name "quadrics.com";
renew 5 2009/03/27 20:56:54;
rebind 1 2009/03/30 13:05:41;
expire 2 2009/03/31 10:05:41;
}
--- [2]
$ grep ^server /etc/ntp.conf.dhcp
server 192.168.20.2 iburst
--
Request ntp-servers by default
https://bugs.launchpad.net/bugs/74164
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to dhcp3 in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 74164] Re: Request ntp-servers by default
Re-testing this situation on jaunty alpha 6 in an enterprise environment with a Microsoft DHCP server, it's still not addressed. The situation is therefore, one of: - NTP syncs to ntp.ubuntu.com and silently maintains a constant offset from our local timeserver - NTP tries to sync to ntp.ubuntu.com, but is blocked by our firewall (the case here), and time silently diverges I feel this is more important than 'wishlist' though. -- Request ntp-servers by default https://bugs.launchpad.net/bugs/74164 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to dhcp3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 234302] Re: ipmitool console session crashed with SIGSEGV
Hi Chuck, I tested your PPA's 'ipmitool_1.8.8-3.1ubuntu1~ppa1_amd64.deb' package on intrepid 8.10 amd64, and found that when I enter SOL mode [1], no further input is accepted. The same test with ipmitool 1.8.9-1 (in the repos) works fine. Let me know for further testing... --- [1] ipmitool -A MD5 -o intelplus -I lanplus -e [ -P foo -H quorum4-mc sol activate 1 -- ipmitool console session crashed with SIGSEGV https://bugs.launchpad.net/bugs/234302 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to ipmitool in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 54180] Re: [rfe] sshd ought to support 'none' cipher
This is the 'none' cipher patch: http://www.psc.edu/networking/projects/hpn-ssh/openssh5.1-dynwindow_noneswitch.diff.gz (from http://www.psc.edu/networking/projects/hpn-ssh/) Since security is so critical, perhaps we should defer judgement to the OpenSSH mailing lists? -- [rfe] sshd ought to support 'none' cipher https://bugs.launchpad.net/bugs/54180 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 54180] Re: [rfe] sshd ought to support 'none' cipher
Problem is that SSH performance is still 10-30x slower with encryption. On a 3.6GHz Intel Penryn with plenty of memory bandwidth [1], we see around 67MB/s - 109MB/s [2]. Moving from 'secret' aes-128-cbc (the default) to 'top-secret' aes-256-cbc (the most secure) is almost free. Moving from MD5 hashing reduces performance too [3]. --- [1] $ sudo hdparm -T /dev/sda /dev/sda: Timing cached reads: 18030 MB in 2.00 seconds = 9026.75 MB/sec --- [2] $ for c in 3des-cbc aes128-cbc aes192-cbc aes256-cbc aes128-ctr aes192-ctr aes256-ctr arcfour128 arcfour256 arcfour blowfish-cbc cast128-cbc; do echo using cipher $c; ssh -c $c localhost dd if=/dev/zero bs=32k count=1 >/dev/null; done 3des-cbc22.6 MB/s aes128-cbc 63.8 MB/s aes192-cbc 67.6 MB/s aes256-cbc 67.4 MB/s aes128-ctr 74.9 MB/s aes192-ctr 73.6 MB/s aes256-ctr 73.3 MB/s arcfour128 109 MB/s arcfour256 108 MB/s arcfour 107 MB/s blowfish-cbc75.0 MB/s cast128-cbc 62.0 MB/s --- [3] $ for m in hmac-md5 hmac-sha1 umac-64 hmac-ripemd160; do echo using digest $m; ssh -c arcfour128 -m $m localhost dd if=/dev/zero bs=32k count=1 >/dev/null; done hmac-md5108 MB/s hmac-sha1 97.9 MB/s hmac-ripemd160 83.0 MB/s -- [rfe] sshd ought to support 'none' cipher https://bugs.launchpad.net/bugs/54180 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 74164] Re: Request ntp-servers by default
Incidentally, we should be requesting 'nis-servers' too, in case that needs to be configured for the environment, eg where on a different network segment, thus broadcasting for it won't find it. -- Request ntp-servers by default https://bugs.launchpad.net/bugs/74164 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to dhcp3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 74164] Re: Request ntp-servers by default
Indeed it is true - we don't need 'default ntp-servers xyz' in /etc/dhcp3/dhclient.conf, since the defaults in /etc/ntp.conf will be used, as /etc/ntp.conf.dhcp won't be created. That's half the changes then... -- Request ntp-servers by default https://bugs.launchpad.net/bugs/74164 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to dhcp3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 74164] Re: Request ntp-servers by default
The fix for this, and obvious intended behaviour is: - add 'ntp-servers' to the 'request' directive in /etc/dhcpd3/dhclient.conf - add 'default ntp-servers 91.189.94.4' (ntp.ubuntu.com) to /etc/dhcpd3/dhclient.conf I confirm that where the DHCP server doesn't pass the 'ntp-servers' option, the default is used and written to /etc/ntp.conf.dhcp, which is then used by ntpd (and otherwise). It would clearly be more ideal to use 'ntp.ubuntu.com' rather than it's IP address, but it is the lesser of the two evils, since firewalls may prevent contacting external NTP servers, causing clock drift and subsequent NFS issues (eg with 'make'). For this reason, I request that this report is escalated to a bug, rather than wishlist. This is readily reproducible with Ubuntu 8.04 HH with stock installation, and dhcp3-client 3.0.6.dfsg-1ubuntu9. -- Request ntp-servers by default https://bugs.launchpad.net/bugs/74164 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to dhcp3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
