From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-hardened+bounces-3190-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1Pbe49-0007Ad-IH
	for garchives@archives.gentoo.org; Sat, 08 Jan 2011 19:03:07 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 02B19E063E
	for <garchives@archives.gentoo.org>; Sat,  8 Jan 2011 19:03:02 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by pigeon.gentoo.org (Postfix) with ESMTP id 76EDBE062D
	for <gentoo-hardened@lists.gentoo.org>; Sat,  8 Jan 2011 18:22:08 +0000 (UTC)
Received: from [192.168.3.7] (cpe-74-77-194-18.buffalo.res.rr.com [74.77.194.18])
	(using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits))
	(No client certificate requested)
	(Authenticated sender: blueness)
	by smtp.gentoo.org (Postfix) with ESMTPSA id D6AC41B4045
	for <gentoo-hardened@lists.gentoo.org>; Sat,  8 Jan 2011 18:22:07 +0000 (UTC)
Message-ID: <4D28AB4D.3020609@gentoo.org>
Date: Sat, 08 Jan 2011 13:22:05 -0500
From: "Anthony G. Basile" <blueness@gentoo.org>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.13) Gecko/20101212 Lightning/1.0b3pre Lanikai/3.1.7
Precedence: bulk
List-Post: <mailto:gentoo-hardened@lists.gentoo.org>
List-Help: <mailto:gentoo-hardened+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-hardened+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-hardened+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-hardened.gentoo.org>
X-BeenThere: gentoo-hardened@lists.gentoo.org
Reply-to: gentoo-hardened@lists.gentoo.org
MIME-Version: 1.0
To: gentoo-hardened@lists.gentoo.org
Subject: Re: [gentoo-hardened] UDEREF vs. Apache MMAP
References: <4D27EEA5.6080301@orlitzky.com> <4D28621E.27194.73F0E0A0@pageexec.freemail.hu>
In-Reply-To: <4D28621E.27194.73F0E0A0@pageexec.freemail.hu>
X-Enigmail-Version: 1.1.2
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Archives-Salt: 7aea53fd-9788-4cc3-b97a-5e87cf319e1e
X-Archives-Hash: 37f3b21a75b5317c147bc39f66738629

On 01/08/2011 07:09 AM, pageexec@freemail.hu wrote:
> On 7 Jan 2011 at 23:57, Michael Orlitzky wrote:
> 
>> I was able to figure out my new apache problem. It seems that
>> PAX_MEMORY_UDEREF and apache's EnableMMAP directive don't get along
>> sometimes:
> 
> this one should have already been fixed in one of this week's patches,
> but i'm not sure if it's in any hardened release yet. you could try the
> latest grsec patch directly and see if it actually resolves the issue.
> 

Okay Michael, can you try:

   hardened-sources-2.6.32-r33

and/or

   hardened-sources-2.6.36-r8

Both are based on the latest grsecurity-*-201101052002.patch

pipacs, was this the same as the python bug?

   http://bugs.gentoo.org/show_bug.cgi?id=329499

-- 
Anthony G. Basile, Ph.D.
Gentoo Developer