Bug 218728

Summary:

emulators/linux_base-c7: update util-linux to 2.23.2-33.el7_3.2

Product:

Ports & Packages

Reporter:

Piotr Kubaj <pkubaj>

Component:

Individual Port(s)

Assignee:

Tijl Coosemans <tijl>

Status:

Closed FIXED

Severity:

Affects Only Me

CC:

pkubaj

Priority:

---

Flags:

bugzilla: maintainer-feedback? (emulation)
tijl: merge-quarterly-

Version:

Latest

Hardware:

Any

OS:

Any

Attachments:

Description	Flags
patch	none

Description Piotr Kubaj freebsd_committer

2017-04-18 13:41:47 UTC

Created attachment 181865 [details]
patch

Changelog:
Security Fix(es):

* A race condition was found in the way su handled the management of child
processes. A local authenticated attacker could use this flaw to kill other
processes with root privileges under specific conditions. (CVE-2017-2616)

Red Hat would like to thank Tobias Stöckmann for reporting this issue.

Bug Fix(es):

* The "findmnt --target <path>" command prints all file systems where the mount
point directory is <path>. Previously, when used in the chroot environment,
"findmnt --target <path>" incorrectly displayed all mount points. The command
has been fixed so that it now checks the mount point path and returns
information only for the relevant mount point. (BZ#1414481)

https://rhn.redhat.com/errata/RHSA-2017-0907.html

The port with patch applied builds fine for c7 and c7_64 on Poudriere with 10.3-RELEASE.

MFH because of security fix.

Comment 1 commit-hook freebsd_committer

2017-05-26 10:49:32 UTC

A commit references this bug:

Author: tijl
Date: Fri May 26 10:49:21 UTC 2017
New revision: 441769
URL: https://svnweb.freebsd.org/changeset/ports/441769

Log:
  Update util-linux to 2.23.2-33.el7_3.2.

  PR:		218728
  Submitted by:	Piotr Kubaj <pkubaj@anongoth.pl>

Changes:
  head/emulators/linux_base-c7/Makefile
  head/emulators/linux_base-c7/distinfo

Comment 2 Tijl Coosemans freebsd_committer

2017-05-26 10:51:33 UTC

We don't install su so the problem doesn't affect us.