Patch-ID# 100101-02
Keywords: ptrace, security, attach
Synopsis: fix for PTRACE_ATTACH security bug
Date: 7-Aug-90
 
SunOS release: 4.1, 4.0.3, 4.0.3c

Topic: 
 
BugId's fixed with this patch: 1041956

Architectures for which this patch is available: sun4, sun4c, sun3, sun3x

Obsoleted by:

Problem Description:

        ptrace() interacts poorly with SETUID and SETGID executables
        under SunOS, creating a security hole when using the ptrace
	attach capability.

Install:
Save your origional version of /sys/sun??/OBJ/sys_process.o
WHERE sun?? is one of sun3, sun3x, sun4, sun4c
cp /sys/sun??/OBJ/sys_process.o /sys/sun??/OBJ/sys_process.o.orig


Copy the appropriate sys_process.o for your archetecture and SunOS version to the /sys/sun??/OBJ
directory.

Example would be for a sun4 system running SunOS 4.1:
cp 4.1/sun4/sys_process.o /sys/sun4/OBJ/sys_process.o

do a /etc/config on your kernel and a make.
 Refer to the System and Network Administration manual for details on configuring a kernel.


