[kernel] r5254 - in dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian: . patches patches/series

Simon Horman horms at costa.debian.org
Thu Jan 5 06:43:27 UTC 2006 

Author: horms
Date: Thu Jan  5 06:43:24 2006
New Revision: 5254

Added:
   dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/kernel-dont-reap-traced.dpatch   (contents, props changed)
Modified:
   dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17
Log:
  * kernel-dont-reap-traced.dpatch
    [PATCH] Don't auto-reap traced children; Local DoS
    See CVE-2005-3784


Modified: dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	(original)
+++ dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	Thu Jan  5 06:43:24 2006
@@ -352,12 +352,16 @@
     From 2.6.14
     See CVE-2005-3806
 
+  * kernel-dont-reap-traced.dpatch
+    [PATCH] Don't auto-reap traced children; Local DoS
+    See CVE-2005-3784
+
   [ dann frazier ]
   * mempolicy-check-mode.dpatch
     [SECURITY] Input validation in sys_set_mempolicy(); local DoS.
     See CAN-2005-3053
 
- -- Simon Horman <horms at verge.net.au>  Thu,  5 Jan 2006 12:25:52 +0900
+ -- Simon Horman <horms at verge.net.au>  Thu,  5 Jan 2006 15:33:56 +0900
 
 kernel-source-2.6.8 (2.6.8-16) unstable; urgency=low
 

Added: dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/kernel-dont-reap-traced.dpatch
==============================================================================
--- (empty file)
+++ dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/kernel-dont-reap-traced.dpatch	Thu Jan  5 06:43:24 2006
@@ -0,0 +1,25 @@
+commit 7ed0175a462c4c30f6df6fac1cccac058f997739
+tree 30e894294260f8595565b620a7bb0b9cf8d1d69c
+parent 759979ab17512a061c3a3e870f091af27ccdcbfb
+author Oleg Nesterov <oleg at tv-sign.ru> Thu, 10 Nov 2005 17:22:18 +0300
+committer Linus Torvalds <torvalds at g5.osdl.org> Thu, 10 Nov 2005 09:57:19 -0800
+
+    [PATCH] Don't auto-reap traced children
+    
+    If a task is being traced we never auto-reap it even if it might look
+    like its parent doesn't care. The tracer obviously _does_ care.
+    
+    Signed-off-by: Linus Torvalds <torvalds at osdl.org>
+
+Backported to Debain's 2.6.8 by Horms
+--- a/kernel/signal.c	2006-01-05 06:20:12.000000000 +0000
++++ b/kernel/signal.c	2006-01-05 06:20:39.000000000 +0000
+@@ -1481,7 +1481,7 @@
+ 
+ 	psig = tsk->parent->sighand;
+ 	spin_lock_irqsave(&psig->siglock, flags);
+-	if (sig == SIGCHLD && tsk->state != TASK_STOPPED &&
++	if (!tsk->ptrace && sig == SIGCHLD && tsk->state != TASK_STOPPED &&
+ 	    (psig->action[SIGCHLD-1].sa.sa_handler == SIG_IGN ||
+ 	     (psig->action[SIGCHLD-1].sa.sa_flags & SA_NOCLDWAIT))) {
+ 		/*

Modified: dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17
==============================================================================
--- dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17	(original)
+++ dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17	Thu Jan  5 06:43:24 2006
@@ -85,3 +85,4 @@
 + proc-legacy-loff-underflow.dpatch
 + dm-crypt-zero-key.dpatch
 + net-ipv6-flowlabel-refcnt.dpatch
++ kernel-dont-reap-traced.dpatch

More information about the Kernel-svn-changes mailing list