← Back to team overview

kernel-packages team mailing list archive

[Bug 1475428] [NEW] linux-lts-trusty: 3.13.0-57 introduced bad ELF layout for PIE

 

Public bug reported:

Since 3.13.0-57 there is the following patch applied:
"fs/binfmt_elf.c: fix bug in loading of PIE binaries" (https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a87938b2e246b81b4fb713edb371a9fa3c5c3c86)

But it is incomplete as its fix is missing:
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2b1d3ae940acd11be44c6eced5873d47c2e00ffa

And it completely messes up the PIE regions as it loads unrelated stuff
between .text and .rodata of the PIE binary.

See:
https://github.com/scanmem/scanmem/issues/122

Upstream fixed that by the following commit:
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d1fd836dcf00d2028c700c7e44d2c23404062c90

So there are two options here:
1. remove that patch
2. apply the other fixes as well

Also 3.16.0-41 is affected.

Thanks!

** Affects: linux (Ubuntu)
     Importance: Undecided
         Status: Incomplete


** Tags: trusty

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1475428

Title:
  linux-lts-trusty: 3.13.0-57 introduced bad ELF layout for PIE

Status in linux package in Ubuntu:
  Incomplete

Bug description:
  Since 3.13.0-57 there is the following patch applied:
  "fs/binfmt_elf.c: fix bug in loading of PIE binaries" (https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a87938b2e246b81b4fb713edb371a9fa3c5c3c86)

  But it is incomplete as its fix is missing:
  https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2b1d3ae940acd11be44c6eced5873d47c2e00ffa

  And it completely messes up the PIE regions as it loads unrelated
  stuff between .text and .rodata of the PIE binary.

  See:
  https://github.com/scanmem/scanmem/issues/122

  Upstream fixed that by the following commit:
  https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d1fd836dcf00d2028c700c7e44d2c23404062c90

  So there are two options here:
  1. remove that patch
  2. apply the other fixes as well

  Also 3.16.0-41 is affected.

  Thanks!

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1475428/+subscriptions


Follow ups