Active Topics

 


Page 41 of 55 « First 313940 41 424351 Last »
Reply
Thread Tools
Alecsandru's Avatar
Alecsandru is offline Alecsandru
2014-06-19 , 17:08
Posts: 439 | Thanked: 282 times | Joined on Oct 2012
#401
how to debug this pali? can you shed some light? (reflashing isn't a option )
__________________
N900 Beast featuring :
8GB OPTFS@ext4(*performance mount options)
overclock: cpu[125 - 1,150(*VDD1)+Dsp overclock
CSSU-T latest version
Last edited by Alecsandru; 2014-06-19 at 17:11.
 
pali is offline pali
2014-06-19 , 17:11
Posts: 2,154 | Thanked: 8,464 times | Joined on May 2010
#402
Give me output of sysinfo-tool -g /device/sw-release-ver
Also are you sure that you did not have unknown before updating?
 
freemangordon is offline freemangordon
2014-06-19 , 17:13
Posts: 3,074 | Thanked: 12,964 times | Joined on Mar 2010 @ Sofia,Bulgaria
#403
@pali: I think this https://gitorious.org/community-ssu/...uctinfo.c#L593 should be #if 0
__________________
Never fear. I is here.

720p video support on N900,SmartReflex on N900,Keyboard and mouse support on N900
Nothing is impossible - Stable thumb2 on n900

Community SSU developer
kernel-power developer and maintainer
 

The Following User Says Thank You to freemangordon For This Useful Post:
Alecsandru's Avatar
Alecsandru is offline Alecsandru
2014-06-19 , 17:18
Posts: 439 | Thanked: 282 times | Joined on Oct 2012
#404
Originally Posted by pali View Post
Give me output of sysinfo-tool -g /device/sw-release-ver
Also are you sure that you did not have unknown before updating?
the command doesn't output anything , and no , the version string was displayed before update and reboot
__________________
N900 Beast featuring :
8GB OPTFS@ext4(*performance mount options)
overclock: cpu[125 - 1,150(*VDD1)+Dsp overclock
CSSU-T latest version
 
sixwheeledbeast is offline sixwheeledbeast
2014-06-19 , 17:28
Posts: 2,292 | Thanked: 4,135 times | Joined on Apr 2010 @ UK
#405
Originally Posted by Alecsandru View Post
new version of osso-product-info and its lib , from unknow message , now i have :
Looks like this.
https://bugs.maemo.org/show_bug.cgi?id=7983
__________________

Wiki Admin
sixwheeledbeast's wiki
Testing Squad Subscriber
- mcallerx - tenminutecore - FlopSwap - Qnotted - zzztop - Bander - Fight2048 -


Before posting or starting a thread please try this.
 
misiak is offline misiak
2014-06-27 , 14:27
Posts: 805 | Thanked: 1,605 times | Joined on Feb 2010 @ Gdynia, Poland
#406
Is there a python maintainer in CSSU team?

https://hackerone.com/reports/12297 - security issue found in python (2.7 and newer for sure, I'm not sure if 2.5 is also vulnerable - I couldn't run the sample code to test the issue and I'm not sure which additional python package I should install to run it)
 

The Following 5 Users Say Thank You to misiak For This Useful Post:
ade is offline ade
2014-06-27 , 17:10
Posts: 1,100 | Thanked: 2,797 times | Joined on Apr 2011 @ Netherlands
#407
Originally Posted by misiak View Post
Is there a python maintainer in CSSU team?

https://hackerone.com/reports/12297 - security issue found in python (2.7 and newer for sure, I'm not sure if 2.5 is also vulnerable - I couldn't run the sample code to test the issue and I'm not sure which additional python package I should install to run it)
Code:
user:~# cat vulnerability_test.py 
from simplejson import JSONDecoder
j = JSONDecoder()

a = '128931233'
b = "472389423"

if id(a) < id(b):
     x = a
     y = b
else:
     x = b
     y = a

diff = id(x) - id(y)

try:
     j.raw_decode(y, diff)
     print("Vulnerable")
except:
     print("Not vulnerable")

user:~# python
Python 2.5.4 (r254:67916, May 17 2010, 21:00:32) 
[GCC 4.2.1] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> execfile("vulnerability_test.py")
Vulnerable
>>>
Assuming I tested it the correct way....

My desktop versions of python (3.3.5 and 2.7.6, importing json instead of simplejson) also report vulnerability at this moment. AFAIK there are no 2.5 patches available (only 2.7 and 3.x), as it is no longer supported.

The fix itself looks simple (in some json related code):
Code:
-    if (idx >= length) {
+    if ( idx < 0 || idx >= length) {
 

The Following 5 Users Say Thank You to ade For This Useful Post:
peterleinchen's Avatar
peterleinchen is offline peterleinchen
2014-06-27 , 18:54
Posts: 4,118 | Thanked: 8,901 times | Joined on Aug 2010 @ Ruhrgebiet, Germany
#408
Just a bit of offtopic:
does this output on N9 with py2.6.6 mean "not vulnerable"

~ $ python
Python 2.6.6 (r266:84292, Mar 11 2011, 01:19:30)
[GCC 4.4.1] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> execfile("vulnerability_test.py")
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
File "vulnerability_test.py", line 1, in <module>
from simplejson import JSONDecoder
ImportError: No module named simplejson
>>>
--answer
Yes, it means.
import from json instead simplejson

~ $ python
Python 2.6.6 (r266:84292, Mar 11 2011, 01:19:30)
[GCC 4.4.1] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> execfile("vulnerability_test.py")
Not vulnerable
>>>
__________________
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!

Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257

editsignature, http://talk.maemo.org/profile.php?do=editsignature
Last edited by peterleinchen; 2014-06-27 at 18:59.
 
ade is offline ade
2014-06-27 , 19:53
Posts: 1,100 | Thanked: 2,797 times | Joined on Apr 2011 @ Netherlands
#409
Just did some more digging. For python 2.5, the code is in python-simplejson (the json module for python 2.5).

And already did the fix in the code

The result now is:
Code:
Python 2.5.4 (r254:67916, May 17 2010, 21:00:32) 
[GCC 4.2.1] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> execfile("vulnerability_test.py")
Not vulnerable
edit: python-simplejson 2.0.9-1maemo2 is now uploaded to extras-devel
Last edited by ade; 2014-06-28 at 18:43. Reason: removed attached deb packages, as it is uploaded to extras-devel
 

The Following 5 Users Say Thank You to ade For This Useful Post:
misiak is offline misiak
2014-06-27 , 21:11
Posts: 805 | Thanked: 1,605 times | Joined on Feb 2010 @ Gdynia, Poland
#410
Originally Posted by ade View Post
Just did some more digging. For python 2.5, the code is in python-simplejson (the json module for python 2.5).

And already did the fix in the code

The result now is:
Code:
Python 2.5.4 (r254:67916, May 17 2010, 21:00:32) 
[GCC 4.2.1] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> execfile("vulnerability_test.py")
Not vulnerable
If someone wants to test with the modified code, see the attachment.
Wait, so are our devices with stock python from repositories vulnerable or not? I don't get whether you are saying that the fix in code was already made or you fixed it in the build you just attached...? If the latter, it should definitely be pushed to CSSU repos I believe...
 
Reply
Page 41 of 55 « First 313940 41 424351 Last »

Tags
easter egg, lockslider

« Previous Thread | Next Thread »

 
Forum Jump


All times are GMT. The time now is 03:22.

Contact Us - Home - Archive - Top