emailed bug reports

Tim Thomas · 09-30-10, 05:24 PM

Hello,

Does anyone know if emailed bug reports are acknowledged in any way? I sent
one in 2 or 3 weeks ago and have heard nothing. Are they ignored?

Tim

09-30-10, 05:34 PM

Uh... For what?

Tim Thomas · 09-30-10, 05:39 PM

Sorry, I should have clarified.

I run grsecurity and it detected a user land pointer being derefrenced in the kernel.

With the option that detects this enabled, I end up with a black screen.

Right now I am running without it.

I sent in the email since I would like to run with that option, and because of the
possible security issue involved in dereferencing that pointer.

The problem started in version 256.x

Tim Thomas · 09-30-10, 05:41 PM

One other thing, I am not saying there is a security issue, but better safe than sorry.

09-30-10, 06:35 PM

Ah, my bad. Sorry man, I'm using my phone right now and didn't notice the Linux sub forum.

or else I wouldn't have asked. Assumed it was an open thread bigman thread or something.

**AaronP** · 09-30-10, 09:34 PM

Sorry, I remember seeing that email go by, but was too busy and forgot to reply to it. It sounds like grsecurity is being a little overly zealous about checking for that sort of thing. There are several calls the driver makes into the kernel that include pointers to user data, and I believe they're all carefully checked.

Tim Thomas · 10-01-10, 03:49 PM

I tried replying but didn't see it.

I assume that the user pointer derefs will remain, correct?

Thanks

Tim

**AaronP** · 10-02-10, 11:04 AM

Yes, unless there's some evidence of an actual security problem.

09-30-10, 05:24 PM	#1
Tim Thomas Registered User Join Date: Sep 2010 Posts: 5	emailed bug reports Hello, Does anyone know if emailed bug reports are acknowledged in any way? I sent one in 2 or 3 weeks ago and have heard nothing. Are they ignored? Tim

09-30-10, 05:39 PM	#3
Tim Thomas Registered User Join Date: Sep 2010 Posts: 5	Re: emailed bug reports Sorry, I should have clarified. I run grsecurity and it detected a user land pointer being derefrenced in the kernel. With the option that detects this enabled, I end up with a black screen. Right now I am running without it. I sent in the email since I would like to run with that option, and because of the possible security issue involved in dereferencing that pointer. The problem started in version 256.x

09-30-10, 05:41 PM	#4
Tim Thomas Registered User Join Date: Sep 2010 Posts: 5	Re: emailed bug reports One other thing, I am not saying there is a security issue, but better safe than sorry.

09-30-10, 09:34 PM	#6
AaronP NVIDIA Corporation Join Date: Mar 2005 Posts: 2,487	Re: emailed bug reports Sorry, I remember seeing that email go by, but was too busy and forgot to reply to it. It sounds like grsecurity is being a little overly zealous about checking for that sort of thing. There are several calls the driver makes into the kernel that include pointers to user data, and I believe they're all carefully checked.

10-01-10, 03:49 PM	#7
Tim Thomas Registered User Join Date: Sep 2010 Posts: 5	Re: emailed bug reports I tried replying but didn't see it. I assume that the user pointer derefs will remain, correct? Thanks Tim

09-30-10, 05:34 PM	#2
Bearclaw Guest Posts: n/a	Uh... For what?

09-30-10, 06:35 PM	#5
Bearclaw Guest Posts: n/a	Ah, my bad. Sorry man, I'm using my phone right now and didn't notice the Linux sub forum. or else I wouldn't have asked. Assumed it was an open thread bigman thread or something.

10-02-10, 11:04 AM	#8
AaronP NVIDIA Corporation Join Date: Mar 2005 Posts: 2,487	Re: emailed bug reports Yes, unless there's some evidence of an actual security problem.