should be marked undumpable to avoid PTRACE attach
Bug #572045 reported by
Kees Cook
This bug affects 3 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNOME Keyring |
Fix Released
|
Critical
|
|||
GnuPG2 |
Fix Released
|
Unknown
|
|||
gnome-keyring (Ubuntu) |
Triaged
|
Wishlist
|
Unassigned | ||
gnupg2 (Ubuntu) |
Fix Released
|
Low
|
Unassigned |
Bug Description
Binary package hint: gnome-keyring
Programs that keep sensitive information in memory should avoid dumping core or being PTRACEable. Things like ssh-agent already accomplish this by calling:
ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: gnome-keyring 2.92.92.
ProcVersionSign
Uname: Linux 2.6.32-21-generic x86_64
Architecture: amd64
Date: Thu Apr 29 22:19:39 2010
ProcEnviron:
LANGUAGE=en_US:en
PATH=(custom, user)
LANG=en_US.utf8
SHELL=/bin/bash
SourcePackage: gnome-keyring
Changed in gnupg2 (Ubuntu): | |
status: | New → Confirmed |
Changed in gnome-keyring (Ubuntu): | |
status: | New → Confirmed |
Changed in gnupg2 (Ubuntu): | |
importance: | Undecided → Low |
Changed in gnupg2: | |
status: | Unknown → Fix Released |
Changed in gnome-keyring: | |
status: | Unknown → Confirmed |
Changed in gnome-keyring (Ubuntu): | |
status: | Confirmed → Triaged |
Changed in gnome-keyring: | |
importance: | Unknown → Critical |
Changed in gnupg2: | |
status: | Fix Released → Incomplete |
Changed in gnupg2: | |
status: | Incomplete → Fix Released |
Changed in gnome-keyring: | |
status: | Confirmed → Fix Released |
To post a comment you must log in.
To more directly illustrate:
$ gdb /usr/bin/ssh-agent $(pidof ssh-agent)
...
Attaching to program: /usr/bin/ssh-agent, process 16395
ptrace: Operation not permitted.
$ gdb /usr/bin/gpg-agent $(pidof gpg-agent) unix/syscall- template. S:82 unix/syscall- template. S: No such file or directory. unix/syscall- template. S
...
Attaching to program: /usr/bin/gpg-agent, process 16396
...
0x00007f68d288af93 in __select_nocancel ()
at ../sysdeps/
82 ../sysdeps/
in ../sysdeps/
(gdb)