[kernel-sec-discuss] r2900 - active
Ben Hutchings
benh at alioth.debian.org
Tue Apr 2 04:54:08 UTC 2013
Author: benh
Date: 2013-04-02 04:53:47 +0000 (Tue, 02 Apr 2013)
New Revision: 2900
Modified:
active/CVE-2011-4131
active/CVE-2013-1797
Log:
Add hints about backporting to 2.6.32 which I couldn't complete yet
Modified: active/CVE-2011-4131
===================================================================
--- active/CVE-2011-4131 2013-04-02 03:52:44 UTC (rev 2899)
+++ active/CVE-2011-4131 2013-04-02 04:53:47 UTC (rev 2900)
@@ -2,6 +2,10 @@
References:
http://www.spinics.net/lists/linux-nfs/msg25288.html
Notes:
+ bwh: The upstream fix relies on the rather larger commit 6650239a4b01
+ 'NFS: Don't use vm_map_ram() in readdir'. If we can get a test case then
+ it may be feasible to implement graceful failure instead. Otherwise this
+ is probably unfixable.
Bugs:
upstream: released (3.3-rc5) [e5012d1f3861d18c7f3814e757c1c3ab3741dbcd, bf118a342f10dafe44b14451a1392c3254629a1f, de040beccd52bb5fcac90031505384d037b1111c, 331818f1c468a24e581aedcbe52af799366a9dfe]
2.6.32-upstream-stable: needed "partial fix in 2.6.32.44"
Modified: active/CVE-2013-1797
===================================================================
--- active/CVE-2013-1797 2013-04-02 03:52:44 UTC (rev 2899)
+++ active/CVE-2013-1797 2013-04-02 04:53:47 UTC (rev 2900)
@@ -1,6 +1,8 @@
Description: use-after-free in MSR_KVM_SYSTEM_TIME
References:
Notes:
+ bwh: For 2.6.32, this requires commit 49c7754ce570 'KVM: Add memory slot
+ versioning and use it to provide fast guest write interface'
Bugs:
upstream: released (3.9-rc3) [0b79459b482e85cb7426aa7da683a9f2c97aeae1]
2.6.32-upstream-stable:
More information about the kernel-sec-discuss
mailing list