r4077 - in branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian: . patches patches/series

Simon Horman horms at costa.debian.org
Wed Aug 31 08:16:51 UTC 2005 

Author: horms
Date: 2005-08-31 08:16:45 +0000 (Wed, 31 Aug 2005)
New Revision: 4077

Added:
   branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/nptl-signal-delivery-deadlock-fix.patch
Modified:
   branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17
Log:
+  * nptl-signal-delivery-deadlock-fix.patch
+    [Maybe-Security: Seems like a local DoS?]
+    NPTL signal delivery deadlock fix
+    Backported From 2.6.12.6


Modified: branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
===================================================================
--- branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	2005-08-31 07:53:02 UTC (rev 4076)
+++ branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	2005-08-31 08:16:45 UTC (rev 4077)
@@ -210,9 +210,20 @@
   * net-sockglue-cap.dpatch
     [Security] Restrict socket policy loading to CAP_NET_ADMIN.
     See CAN-2005-2555.
+    Also in 2.6.12.6 as ipsec-socket-policy-use-cap.patch
 
- -- Simon Horman <horms at debian.org>  Tue, 30 Aug 2005 17:28:42 +0900
+  * fix-dst-leak-in-icmp_push_reply.patch
+    [Maybe-Security: Can remote traffic trigger this?]
+    Fix DST leak in icmp_push_reply()
+    From 2.6.12.6
 
+  * nptl-signal-delivery-deadlock-fix.patch
+    [Maybe-Security: Seems like a local DoS?]
+    NPTL signal delivery deadlock fix
+    Backported From 2.6.12.6
+
+ -- Simon Horman <horms at debian.org>  Wed, 31 Aug 2005 16:35:24 +0900
+
 kernel-source-2.6.8 (2.6.8-16) unstable; urgency=low
 
   * smbfs-overrun.dpatch:

Added: branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/nptl-signal-delivery-deadlock-fix.patch
===================================================================
--- branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/nptl-signal-delivery-deadlock-fix.patch	2005-08-31 07:53:02 UTC (rev 4076)
+++ branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/nptl-signal-delivery-deadlock-fix.patch	2005-08-31 08:16:45 UTC (rev 4077)
@@ -0,0 +1,15 @@
+--- a/kernel/signal.c	2005-08-31 17:04:28.000000000 +0900
++++ b/kernel/signal.c	2005-08-31 17:05:44.000000000 +0900
+@@ -631,6 +631,12 @@
+ {
+ 	struct task_struct *t;
+ 
++        if (p->signal->flags & SIGNAL_GROUP_EXIT)
++		/*
++		 * The process is in the middle of dying already.
++		 */
++		return;
++
+ 	if (sig_kernel_stop(sig)) {
+ 		/*
+ 		 * This is a stop signal.  Remove SIGCONT from all queues.

Modified: branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17
===================================================================
--- branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17	2005-08-31 07:53:02 UTC (rev 4076)
+++ branches/dist/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17	2005-08-31 08:16:45 UTC (rev 4077)
@@ -55,3 +55,4 @@
 + module-per-cpu-alignment-fix.dpatch
 + net-sockglue-cap.dpatch
 + fix-dst-leak-in-icmp_push_reply.patch
++ nptl-signal-delivery-deadlock-fix.patch

More information about the Kernel-svn-changes mailing list