[kernel-sec-discuss] r5494 - retired
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 23 19:43:32 UTC 2017
Author: carnil
Date: 2017-08-23 19:43:32 +0000 (Wed, 23 Aug 2017)
New Revision: 5494
Modified:
retired/CVE-2016-7097
Log:
Reference more commits for regressions in filesystems and sgid clearing problem
Modified: retired/CVE-2016-7097
===================================================================
--- retired/CVE-2016-7097 2017-08-23 19:35:36 UTC (rev 5493)
+++ retired/CVE-2016-7097 2017-08-23 19:43:32 UTC (rev 5494)
@@ -10,6 +10,15 @@
carnil> Released in 4.13-rc4 [a3bb2d5587521eea6dab2d05326abb0afb460abd]
carnil> and is CC'ed to stable at vger.kernel.org
carnil> Fixed as well in 4.12.6 [0965d89ebda3d71338ab2573c1a4d784c1e79611]
+ carnil> More filesystems fixed already earlier, found commits:
+ carnil> a3bb2d558752 ext4: Don't clear SGID when inheriting ACLs
+ carnil> 9bcf66c72d72 jfs: Don't clear SGID when inheriting ACLs
+ carnil> 84969465ddc4 hfsplus: Don't clear SGID when inheriting ACLs
+ carnil> a992f2d38e4c ext2: Don't clear SGID when inheriting ACLs
+ carnil> 6883cd7f6824 reiserfs: Don't clear SGID when inheriting ACLs
+ carnil> c925dc162f77 f2fs: Don't clear SGID when inheriting ACLs
+ carnil> b7f8a09f8097 btrfs: Don't clear SGID when inheriting ACLs
+ carnil> 8ba358756aa0 xfs: Don't clear SGID when inheriting ACLs
Bugs:
upstream: released (4.9-rc1) [073931017b49d9458aa351605b43a7e34598caef]
3.16-upstream-stable: released (3.16.39) [posix_acl-clear-sgid-bit-when-setting-file-permissions.patch]
More information about the kernel-sec-discuss
mailing list