slmodemd has an executable stack
Bug #537650 reported by
Kees Cook
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sl-modem (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
Lucid |
Fix Released
|
Low
|
Unassigned |
Bug Description
execstack -q /usr/sbin/slmodemd
X /usr/sbin/slmodemd
This is potentially dangerous, and should be addressed. Please see:
https:/
for details.
ProblemType: Bug
Architecture: amd64
Date: Thu Mar 11 12:59:12 2010
DistroRelease: Ubuntu 10.04
Package: sl-modem-daemon (not installed)
ProcEnviron:
LANGUAGE=en_US:en
PATH=(custom, user)
LANG=en_US.UTF-8
SHELL=/bin/bash
ProcVersionSign
SourcePackage: sl-modem
Uname: Linux 2.6.32-16-generic x86_64
security vulnerability: | no → yes |
Changed in sl-modem (Ubuntu Lucid): | |
milestone: | none → ubuntu-10.04-beta-2 |
status: | New → Confirmed |
importance: | Undecided → Medium |
Changed in sl-modem (Ubuntu Lucid): | |
status: | In Progress → Fix Released |
To post a comment you must log in.
This is caused by the precompiled object file "modem/dsplibs.o". If someone uses sl-modem, we can try marking the stack off with "execstack -c".