[kernel-sec-discuss] r2935 - active

[Dann Frazier]

Author: dannf
Date: 2013-05-06 00:28:50 +0000 (Mon, 06 May 2013)
New Revision: 2935

Modified:
   active/CVE-2013-0913
   active/CVE-2013-2015
Log:
update squeeze status

Modified: active/CVE-2013-0913
===================================================================
--- active/CVE-2013-0913	2013-05-06 00:28:14 UTC (rev 2934)
+++ active/CVE-2013-0913	2013-05-06 00:28:50 UTC (rev 2935)
@@ -3,9 +3,12 @@
  https://lkml.org/lkml/2013/3/11/677
  http://www.openwall.com/lists/oss-security/2013/03/11/6
 Notes:
+ dannf> This looks like a regression, introduced in 2.6.37-rc1 by 2549d6c,
+        with a partial fix applied in d1d7883, and completely addressed in
+        3118a4f. The check in 2.6.32 looks equivalent to that in 3118a4f.
 Bugs:
 upstream: released (3.9-rc4) [3118a4f652c7b12c752f3222af0447008f9b2368]
 2.6.32-upstream-stable:
 sid: released (3.2.41-2) [bugfix/x86/drm-i915-bounds-check-execbuffer-relocation-count.patch]
-2.6.32-squeeze-security:
+2.6.32-squeeze-security: N/A "see notes"
 3.2-upstream-stable: released (3.2.42) [drm-i915-bounds-check-execbuffer-relocation-count.patch]

Modified: active/CVE-2013-2015
===================================================================
--- active/CVE-2013-2015	2013-05-06 00:28:14 UTC (rev 2934)
+++ active/CVE-2013-2015	2013-05-06 00:28:50 UTC (rev 2935)
@@ -2,10 +2,11 @@
 References:
 Notes:
  raphael: FTR, I believe that this is the commit that introduced the ext4 issue: https://github.com/torvalds/linux/commit/c9b92530a723ac5ef8e352885a1862b18f31b2f5
+ dannf> Verified that reproducer hangs on 2.6.32
 Bugs:
 upstream: released (3.8) [0e9a9a1ad619e7e987815d20262d36a2f95717ca]
 2.6.32-upstream-stable:
 sid:
 3.2-wheezy-security:
-2.6.32-squeeze-security:
+2.6.32-squeeze-security: pending (2.6.32-48squeeze2) [bugfix/all/ext4-make-orphan-functions-be-no-op-in-no-journal-mo.patch, bugfix/all/ext4-avoid-hang-when-mounting-non-journal-filesystem.patch]
 3.2-upstream-stable: