[kernel-sec-discuss] r2900 - active

Ben Hutchings benh at alioth.debian.org
Tue Apr 2 04:54:08 UTC 2013


Author: benh
Date: 2013-04-02 04:53:47 +0000 (Tue, 02 Apr 2013)
New Revision: 2900

Modified:
   active/CVE-2011-4131
   active/CVE-2013-1797
Log:
Add hints about backporting to 2.6.32 which I couldn't complete yet

Modified: active/CVE-2011-4131
===================================================================
--- active/CVE-2011-4131	2013-04-02 03:52:44 UTC (rev 2899)
+++ active/CVE-2011-4131	2013-04-02 04:53:47 UTC (rev 2900)
@@ -2,6 +2,10 @@
 References:
  http://www.spinics.net/lists/linux-nfs/msg25288.html
 Notes:
+ bwh: The upstream fix relies on the rather larger commit 6650239a4b01
+ 'NFS: Don't use vm_map_ram() in readdir'.  If we can get a test case then
+ it may be feasible to implement graceful failure instead.  Otherwise this
+ is probably unfixable.
 Bugs:
 upstream: released (3.3-rc5) [e5012d1f3861d18c7f3814e757c1c3ab3741dbcd, bf118a342f10dafe44b14451a1392c3254629a1f, de040beccd52bb5fcac90031505384d037b1111c, 331818f1c468a24e581aedcbe52af799366a9dfe]
 2.6.32-upstream-stable: needed "partial fix in 2.6.32.44"

Modified: active/CVE-2013-1797
===================================================================
--- active/CVE-2013-1797	2013-04-02 03:52:44 UTC (rev 2899)
+++ active/CVE-2013-1797	2013-04-02 04:53:47 UTC (rev 2900)
@@ -1,6 +1,8 @@
 Description: use-after-free in MSR_KVM_SYSTEM_TIME
 References:
 Notes:
+ bwh: For 2.6.32, this requires commit 49c7754ce570 'KVM: Add memory slot
+ versioning and use it to provide fast guest write interface'
 Bugs:
 upstream: released (3.9-rc3) [0b79459b482e85cb7426aa7da683a9f2c97aeae1]
 2.6.32-upstream-stable:




More information about the kernel-sec-discuss mailing list