From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.8 required=5.0 tests=DKIM_ADSP_CUSTOM_MED, DKIM_INVALID,DKIM_SIGNED,FREEMAIL_FROM,HTML_MESSAGE,MAILING_LIST_MULTI autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 18979 invoked from network); 11 Jan 2023 17:29:35 -0000 Received: from minnie.tuhs.org (50.116.15.146) by inbox.vuxu.org with ESMTPUTF8; 11 Jan 2023 17:29:35 -0000 Received: from minnie.tuhs.org (localhost [IPv6:::1]) by minnie.tuhs.org (Postfix) with ESMTP id 6ED2041B77; Thu, 12 Jan 2023 03:29:11 +1000 (AEST) Received: from mail-wm1-f52.google.com (mail-wm1-f52.google.com [209.85.128.52]) by minnie.tuhs.org (Postfix) with ESMTPS id 4112C41B74 for ; Thu, 12 Jan 2023 03:29:06 +1000 (AEST) Received: by mail-wm1-f52.google.com with SMTP id g19-20020a05600c4ed300b003d9eb1dbc0aso10303322wmq.3 for ; Wed, 11 Jan 2023 09:29:06 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Z25cGp6MKDDX5lYZznfSaakb/GibHDD0N2jzQ57e8M0=; b=TIc9U3fYA5KXkXmW97lUHjCfReMiKL9nBRNni7HI0lkB0vvBGl9/7oTIroiwWb6NCl McKsFzNoveEDtWDUtr4WoTDzrcLEGEna6vv9i65nwV7KZQWs9UZP2zbx2ZfnkLOEfsi/ 2qW2jMJAlOfhWnA1zGQu08nTh7BBjjruPeH9nsy/sLxMwbV1j0/dfW9Ya3J2Vgzyk+Om nvbpB4jrkaZYvDWLWY2G6/5SPYF/z0MmENZosqRtokmCGVbIBsHryG4bxmQbAn3/M3+V w4ScwTmXqgGbaVPCDVPGft2G2IOh0cQ8Drz8k6oQKmUHioojWIl06DMt+8E4oELEUlx3 yGrw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=Z25cGp6MKDDX5lYZznfSaakb/GibHDD0N2jzQ57e8M0=; b=156tJqWjr/PheVE/FWIWO2HWI6ao3tPmDSOoy47kxWIDY2HqU9adqw/4sbJBHHbMJU Jv/LKXXXM13SyztzXnrZXKUXAgyohiBStuEZ6MiwZqJy8OIiqsf51vNJhe+Ac298gplz SGvZro9stBb7SZDy+UQQQWysp5fwov9UAgU8l+0jDOJb2zH22ny+TGP19+D4UKj8DZ4p mXYG1dQNJiXQSyqA45LFdxybQ8F6cklswVQTUbfCqjQ9yKuaDIACGHBZS1v34GMDpBiz iysIryDMmJMUyYEzXmIcXdZgXj+vuo5JfAQGwubIJMrh+FmrmxNZfdyTR5V5ayppZRdz /1Ng== X-Gm-Message-State: AFqh2kqfG4o6swu0ieb3DUHmep4W0nG8dxzNYtMuCGMOTdDA9hPnYxnF D7yF69A/BvWFPqOLUm8CVJzPdHvR/YSo5cWnr5G38Fk+ X-Google-Smtp-Source: AMrXdXvFtei9Di+CioGCHBX4GIWAQiL4BllaC6S5PID8qXBj+by1FKUHDVgGX+wLsIwcnAPRJGHFig8feFsUqKOSgLE= X-Received: by 2002:a05:600c:1e18:b0:3d3:5249:d429 with SMTP id ay24-20020a05600c1e1800b003d35249d429mr2531001wmb.19.1673458084503; Wed, 11 Jan 2023 09:28:04 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: Alec Muffett Date: Wed, 11 Jan 2023 17:27:53 +0000 Message-ID: To: Dan Cross Content-Type: multipart/alternative; boundary="000000000000ac649d05f2005252" Message-ID-Hash: F74AL53KEOYNJNO6ALZYAMX43LRBJOZF X-Message-ID-Hash: F74AL53KEOYNJNO6ALZYAMX43LRBJOZF X-MailFrom: alec.muffett@gmail.com X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tuhs.tuhs.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: TUHS X-Mailman-Version: 3.3.6b1 Precedence: list Subject: [TUHS] Re: In search of SunOS 4-era security advisory. List-Id: The Unix Heritage Society mailing list Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: --000000000000ac649d05f2005252 Content-Type: text/plain; charset="UTF-8" https://vuls.cert.org/confluence/plugins/servlet/mobile?contentId=97124523#content/view/97124523 On Wed, 11 Jan 2023, 17:13 Dan Cross, wrote: > The security vulnerability in question could be briefly summarized as, > "Fortran divide-by-zero gives root." I think that was just a specific > manifestation of the underlying problem, though. More specifically it > was actually due to failure to sanitize state after handling a SIGFPE > (and possibly other signals as well?). > > I have a distinct memory of this, but can no longer find any evidence > for it. Did I just make it up from whole cloth, or was this actually a > thing? > > - Dan C. > --000000000000ac649d05f2005252 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
On Wed, 11 Ja= n 2023, 17:13 Dan Cross, <crossd@gma= il.com> wrote:
The security = vulnerability in question could be briefly summarized as,
"Fortran divide-by-zero gives root." I think that was just a spec= ific
manifestation of the underlying problem, though. More specifically it
was actually due to failure to sanitize state after handling a SIGFPE
(and possibly other signals as well?).

I have a distinct memory of this, but can no longer find any evidence
for it. Did I just make it up from whole cloth, or was this actually a
thing?

=C2=A0 =C2=A0 =C2=A0 =C2=A0 - Dan C.
--000000000000ac649d05f2005252--