[kernel] r7239 - in
dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian:
patches patches/series
Dann Frazier
dannf at costa.debian.org
Sun Aug 27 02:39:17 UTC 2006
Author: dannf
Date: Sun Aug 27 02:39:16 2006
New Revision: 7239
Added:
dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/225_sg-no-mmap-VM_IO.diff
- copied, changed from r7182, /dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/sg-no-mmap-VM_IO.dpatch
Modified:
dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge4
Log:
* 225_sg-no-mmap-VM_IO.diff
[SECURITY] Fix DoS vulnerability whereby a local user could attempt
a dio/mmap and cause the sg driver to oops.
See CVE-2006-1528
Modified: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
==============================================================================
--- dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog (original)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog Sun Aug 27 02:39:16 2006
@@ -9,8 +9,12 @@
be used by a local user to trigger a buffer overflow via a specially
crafted DVD, USB stick, or similar automatically mounted device.
See CVE-2006-2935
+ * 225_sg-no-mmap-VM_IO.diff
+ [SECURITY] Fix DoS vulnerability whereby a local user could attempt
+ a dio/mmap and cause the sg driver to oops.
+ See CVE-2006-1528
- -- dann frazier <dannf at debian.org> Wed, 16 Aug 2006 20:59:54 -0600
+ -- dann frazier <dannf at debian.org> Thu, 17 Aug 2006 00:35:53 -0600
kernel-source-2.4.27 (2.4.27-10sarge3) stable-security; urgency=high
Copied: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/225_sg-no-mmap-VM_IO.diff (from r7182, /dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/sg-no-mmap-VM_IO.dpatch)
==============================================================================
--- /dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/sg-no-mmap-VM_IO.dpatch (original)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/225_sg-no-mmap-VM_IO.diff Sun Aug 27 02:39:16 2006
@@ -1,15 +1,14 @@
-diff -Naru a/drivers/scsi/sg.c b/drivers/scsi/sg.c
---- a/drivers/scsi/sg.c 2006-08-17 07:30:31 -07:00
-+++ b/drivers/scsi/sg.c 2006-08-17 07:30:31 -07:00
-@@ -1299,7 +1299,7 @@
- sg_rb_correct4mmap(rsv_schp, 1); /* do only once per fd lifetime */
- sfp->mmap_called = 1;
- }
-- vma->vm_flags |= (VM_RESERVED | VM_IO);
-+ vma->vm_flags |= VM_RESERVED;
- vma->vm_private_data = sfp;
- vma->vm_ops = &sg_mmap_vm_ops;
- return 0;
+--- kernel-source-2.4.27.orig/drivers/scsi/sg.c 2003-11-28 11:26:20.000000000 -0700
++++ kernel-source-2.4.27/drivers/scsi/sg.c 2006-08-17 00:27:29.647085171 -0600
+@@ -1182,7 +1182,7 @@ static int sg_mmap(struct file * filp, s
+ sg_rb_correct4mmap(rsv_schp, 1); /* do only once per fd lifetime */
+ sfp->mmap_called = 1;
+ }
+- vma->vm_flags |= (VM_RESERVED | VM_IO);
++ vma->vm_flags |= VM_RESERVED;
+ vma->vm_private_data = sfp;
+ vma->vm_ops = &sg_mmap_vm_ops;
+ return 0;
# This is a BitKeeper generated diff -Nru style patch.
#
# ChangeSet
Modified: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge4
==============================================================================
--- dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge4 (original)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge4 Sun Aug 27 02:39:16 2006
@@ -1,2 +1,3 @@
+ 223_nfs-handle-long-symlinks.diff
+ 224_cdrom-bad-cgc.buflen-assign.diff
++ 225_sg-no-mmap-VM_IO.diff
More information about the Kernel-svn-changes
mailing list