Comment 3 for bug 1269053
Revision history for this message
| Andy Whitcroft (apw) wrote Re: IBM Domino 'bindsock' cannot bind to ports <1024 since recent kernel 3.5.0-45 | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)
I suspect that this recvmsg is triggering the error that is emitted:
2775 recvmsg(9, 0x7fffbff554f0, 0) = -1 EINVAL (Invalid argument)
This might well indicate that this subprocess is using msg ipc to communicate the connected socket back to the unpriviledged master process. This could well occur if the bindsock process is passing an overly large message buffer, which is technically erroneous. This became fatal in the commit below in mainline:
1661bf364ae9c
Author: Dan Carpenter <email address hidden>
Date: Thu Oct 3 00:27:20 2013 +0300
net: heap overflow in __audit_sockaddr
This commit was applied to the various versions listed above as part of various stable updates.
There has subsequently been a fix for this commit which softens the effect for badly behaving callers:
1661bf364ae9c
Author: Dan Carpenter <email address hidden>
Date: Thu Oct 3 00:27:20 2013 +0300
net: heap overflow in __audit_sockaddr
This commit has recently hit v3.2.x stable but is not yet in any released kernel.