Gentoo Archives: gentoo-hardened

From: Alex Efros <powerman@××××××××××××××××××.com>
To: gentoo-hardened@l.g.o
Subject: [gentoo-hardened] 2.6.27-hardened-r8: assassination
Date: Fri, 06 Mar 2009 03:57:20
Message-Id: 20090306035718.GH1917@home.power
1 Hi!
2
3 It's ~6am here and I'm too tired to file new bugs, I wanna sleep a little first.
4
5 While in general Gentoo "stable" branch is very stable, shit always happens.
6 This time is was upgrade from 2.6.26-hardened-r9 to 2.6.27-hardened-r8.
7
8 First issue: many perl scripts (including FastCGI servers) failed to start
9 with segmentation fault. See http://bugs.gentoo.org/show_bug.cgi?id=261357
10 for details and ugly workarounds.
11
12 Second issue: apache failed to start with segmentation fault. As I said,
13 I'll file bugs later, but in short it's trouble with Ioncube and
14 ZendOptimizer. I had to switch off both to run apache. I've no idea how it
15 may be possible to workaround this without doing paxctl -m on apache.
16
17
18 For now I just rollback to previous kernel (I think that will be more
19 secure than paxctl -m for apache, plus I afraid new kernel may do other
20 nasty things too).
21
22
23 Resume: this upgrade kill both perl and apache. :(
24
25 --
26 WBR, Alex.

Replies

Subject Author
Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination Alex Efros <powerman@××××××××××××××××××.com>
Re: [gentoo-hardened] 2.6.27-hardened-r8: assassination pageexec@××××××××.hu