View Issue Details

IDProjectCategoryView StatusLast Update
0000159fileGeneralpublic2020-05-30 23:56
ReporterLambda Assigned Tochristos  
Status resolvedResolutionfixed 
Product Version5.38 
Fixed in Version5.39 
Summary0000159: Missing seccomp whitelist entry for getpid()
Descriptionfile_pipe2file() creates a new temporary file using mktemp()/mkstemp(), which use getpid() internally (at least in the glibc implementation). If seccomp support is enabled, the program crashes when this syscall is attempted to be used.
Steps To Reproduce$ file --version
magic file from /usr/share/file/misc/magic
seccomp support included

glibc 2.31

A rare case of justified cat abuse can be employed to demonstrate the crash in file_pipe2file() (which is currently only used in file_tryelf()):

$ cat /bin/file | file -
Bad system call
TagsNo tags attached.



2020-05-30 23:56

manager   ~0003417

Fixed, thanks!

Issue History

Date Modified Username Field Change
2020-04-28 22:07 Lambda New Issue
2020-05-30 23:56 christos Assigned To => christos
2020-05-30 23:56 christos Status new => assigned
2020-05-30 23:56 christos Status assigned => resolved
2020-05-30 23:56 christos Resolution open => fixed
2020-05-30 23:56 christos Fixed in Version => 5.39
2020-05-30 23:56 christos Note Added: 0003417