Page 1 of 1

PAX size overflow while installing packages

PostPosted: Fri Apr 18, 2014 8:26 am
by osax
Hi,
I tried to install postifx on a clean Wheezy Box. -> aptitude install postifx
aptitude tries to remove exim4-daemon-light
Code: Select all
Removing exim4-daemon-light ...
Killed

and pax finds a size overflow:
Code: Select all
Apr 18 14:20:52 grsec kernel: [ 6299.963888] PAX: size overflow detected in function radix_tree_prev_hole lib/radix-tree.c:815 cicus.122_29 min, count: 2
Apr 18 14:20:52 grsec kernel: [ 6299.964929] Pid: 17188, comm: exim4 Not tainted 3.2.57-grsec #1
Apr 18 14:20:52 grsec kernel: [ 6299.964932] Call Trace:
Apr 18 14:20:52 grsec kernel: [ 6299.964941]  [<ffffffff81114021>] ? report_size_overflow+0x37/0x41
Apr 18 14:20:52 grsec kernel: [ 6299.964946]  [<ffffffff811fa0af>] ? radix_tree_prev_hole+0x76/0x85
Apr 18 14:20:52 grsec kernel: [ 6299.964950]  [<ffffffff810cac80>] ? ondemand_readahead+0x10f/0x1e8
Apr 18 14:20:52 grsec kernel: [ 6299.964955]  [<ffffffff810c260e>] ? generic_file_aio_read+0x32d/0x7ac
Apr 18 14:20:52 grsec kernel: [ 6299.964958]  [<ffffffff810c18c4>] ? iov_iter_copy_from_user+0x156/0x156
Apr 18 14:20:52 grsec kernel: [ 6299.964961]  [<ffffffff8110ea1b>] ? do_sync_read+0xa1/0xe4
Apr 18 14:20:52 grsec kernel: [ 6299.964965]  [<ffffffff8110f6f0>] ? vfs_read+0x125/0x1b1
Apr 18 14:20:52 grsec kernel: [ 6299.964968]  [<ffffffff8110f7c0>] ? sys_read+0x44/0x79
Apr 18 14:20:52 grsec kernel: [ 6299.964972]  [<ffffffff813d4f6c>] ? system_call_fastpath+0x16/0x1b
Apr 18 14:20:52 grsec kernel: [ 6299.964976]  [<ffffffff813da2cd>] ? pax_enter_kernel_user+0xbd/0x110
Apr 18 14:20:52 grsec kernel: [ 6299.964979]  [<ffffffff813da309>] ? pax_enter_kernel_user+0xf9/0x110
Apr 18 14:20:52 grsec kernel: [ 6299.964982]  [<ffffffff813da3f6>] ? pax_exit_kernel_user+0xd6/0x110
Apr 18 14:20:52 grsec kernel: [ 6299.964986]  [<ffffffff813d55ca>] ? retint_swapgs+0x13/0x16


Additional Information aboout the System:
This is a VM running under KVM.
grsec config ist set to automatic, kvm guest, security over performance

Re: PAX size overflow while installing packages

PostPosted: Fri Apr 18, 2014 10:51 am
by ephox
Thanks for the report. It will be fixed in the next PaX version.