[kernel] r5297 - patch-tracking
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Thu Jan 5 23:36:40 UTC 2006
Author: jmm-guest
Date: Thu Jan 5 23:36:39 2006
New Revision: 5297
Modified:
patch-tracking/CVE-2004-0565
Log:
CVE-2004-0565 resolved for Sarge.
Modified: patch-tracking/CVE-2004-0565
==============================================================================
--- patch-tracking/CVE-2004-0565 (original)
+++ patch-tracking/CVE-2004-0565 Thu Jan 5 23:36:39 2006
@@ -12,12 +12,16 @@
only checks the MFH bit but does not verify the FPH owner, which allows local
users to read register values of other processes by setting the MFH bit.
Notes:
+ jmm> I've verified that the check for FPH ownership is included in stock 2.6.8:
+ jmm> # define switch_to(prev,next,last) do { \
+ jmm> if (ia64_psr(ia64_task_regs(prev))->mfh && ia64_is_local_fpu_owner(prev)) {
+ jmm> So it's N/A, but I don't know at which time it was fixed upstream
Bugs:
upstream: released (2.4.27)
linux-2.6:
-2.6.8-sarge-security:
+2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
-2.6.8:
+2.6.8: N/A
2.4.19-woody-security: pending (2.4.19-4.woody3)
2.4.18-woody-security: released (2.4.18-14.4)
2.4.17-woody-security: pending (2.4.17-1woody4)
More information about the Kernel-svn-changes
mailing list