r4259 - in dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian: . patches patches/series

Simon Horman horms at costa.debian.org
Thu Sep 22 10:04:28 UTC 2005 

Author: horms
Date: 2005-09-22 10:04:27 +0000 (Thu, 22 Sep 2005)
New Revision: 4259

Added:
   dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/190_outs-2.diff
Modified:
   dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
   dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-12
Log:

+  * 190_outs-2.diff (removed 143_outs.diff):
+    [SECURITY]: AMD64, allows local users to write to privileged
+    IO ports via OUTS instruction
+    See CAN-2005-0204
+    143_outs.diff, included in 2.4.27-11 breaks the
+    build as IO_BITMAP_BYTES is not defined. 190_outs-2.diff
+    should resolve this problem by defining IO_BITMAP_BYTES
+    (closes: #329354)
+  * 191_build_foo.diff
+    Fix build problems that appear to be caused by recent binutils changes
+    (closes: #328707)


Modified: dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
===================================================================
--- dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	2005-09-22 09:36:43 UTC (rev 4258)
+++ dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	2005-09-22 10:04:27 UTC (rev 4259)
@@ -56,8 +56,20 @@
   * 179_net-ipv4-netfilter-ip_recent-last_pkts.diff
     Included in 2.4.27-11 is CAN-2005-2872
 
- -- Simon Horman <horms at debian.org>  Mon, 12 Sep 2005 17:12:07 +0900
+  * 190_outs-2.diff (removed 143_outs.diff):
+    [SECURITY]: AMD64, allows local users to write to privileged
+    IO ports via OUTS instruction
+    See CAN-2005-0204
+    143_outs.diff, included in 2.4.27-11 breaks the
+    build as IO_BITMAP_BYTES is not defined. 190_outs-2.diff
+    should resolve this problem by defining IO_BITMAP_BYTES
+    (closes: #329354)
+  * 191_build_foo.diff
+    Fix build problems that appear to be caused by recent binutils changes
+    (closes: #328707)
 
+ -- Simon Horman <horms at debian.org>  Thu, 22 Sep 2005 18:55:18 +0900
+
 kernel-source-2.4.27 (2.4.27-11) unstable; urgency=low
 
   [ Simon Horman ]

Copied: dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/190_outs-2.diff (from rev 4166, dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/143_outs.diff)
===================================================================
--- dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/143_outs.diff	2005-09-10 18:21:40 UTC (rev 4166)
+++ dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/190_outs-2.diff	2005-09-22 10:04:27 UTC (rev 4259)
@@ -0,0 +1,30 @@
+Description: [CAN-2005-0204]: AMD64, allows local users to write to privileged IO ports via OUTS instruction
+Patch author: Suresh Siddha (suresh.b.siddha at intel.com)
+Upstream status: not applied
+URL: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=146244
+Patch source: Micah Anderson <micah at riseup.net> (debian-kernel)
+
+Added definition of IO_BITMAP_BYTES for Debian's 2.4.27 and
+submitted upstream for consideration for inclusion in 2.4 -- Horms
+ 
+--- a/include/asm-x86_64/desc.h	2005-02-24 19:51:26.000000000 +0900
++++ b/include/asm-x86_64/desc.h	2005-02-24 19:52:40.000000000 +0900
+@@ -128,7 +128,7 @@
+ 
+ static inline void set_tss_desc(unsigned n, void *addr)
+ { 
+-	set_tssldt_descriptor((void *)&gdt_table + __CPU_DESC_INDEX(n,tss), (unsigned long)addr, DESC_TSS, sizeof(struct tss_struct)); 
++	set_tssldt_descriptor((void *)&gdt_table + __CPU_DESC_INDEX(n,tss), (unsigned long)addr, DESC_TSS, IO_BITMAP_OFFSET + IO_BITMAP_BYTES + 7); 
+ } 
+ 
+ static inline void set_ldt_desc(unsigned n, void *addr, int size)
+--- a/include/asm-x86_64/processor.h	2005-09-22 11:12:40.000000000 +0900
++++ b/include/asm-x86_64/processor.h	2005-09-22 11:12:43.000000000 +0900
+@@ -260,6 +260,7 @@
+  * Size of io_bitmap in longwords: 32 is ports 0-0x3ff.
+  */
+ #define IO_BITMAP_SIZE	32
++#define IO_BITMAP_BYTES (IO_BITMAP_SIZE * sizeof(u32))
+ #define IO_BITMAP_OFFSET offsetof(struct tss_struct,io_bitmap)
+ #define INVALID_IO_BITMAP_OFFSET 0x8000
+ 

Modified: dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-12
===================================================================
--- dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-12	2005-09-22 09:36:43 UTC (rev 4258)
+++ dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-12	2005-09-22 10:04:27 UTC (rev 4259)
@@ -5,3 +5,6 @@
 + 188_fix-dst-leak-in-icmp_push_reply.diff
 + 189_ipv6-skb-leak.diff
 + 180_fs-isofs-ignored-parameters.diff
+- 143_outs.diff
++ 190_outs-2.diff
++ 191_build_foo.diff

More information about the Kernel-svn-changes mailing list