[kernel] r5463 - patch-tracking
Dann Frazier
dannf at costa.debian.org
Mon Jan 16 19:11:57 UTC 2006
Author: dannf
Date: Mon Jan 16 19:11:55 2006
New Revision: 5463
Modified:
patch-tracking/CVE-2004-0415
Log:
Links to what I think are the 2.4 patches; I've asked Al Viro & Marcelo for
confirmation
Modified: patch-tracking/CVE-2004-0415
==============================================================================
--- patch-tracking/CVE-2004-0415 (original)
+++ patch-tracking/CVE-2004-0415 Mon Jan 16 19:11:55 2006
@@ -18,8 +18,15 @@
Linux kernel does not properly convert 64-bit file offset pointers to 32 bits,
which allows local users to access portions of kernel memory.
Notes:
+ dannf> Based on the 2.4.27 changelog, I think this is the 2.4 fix:
+ http://linux.bkbits.net:8080/linux-2.4/cset@411064f7uz3rKDb73dEb4vCqbjEIdw?nav=index.html|src/|src/drivers|src/drivers/char|related/drivers/char/i8k.c
+ and
+ http://linux.bkbits.net:8080/linux-2.4/cset@41113629fBqsXgKVAey-EzhZOkS2Lw?nav=index.html|src/|src/net|src/net/atm|related/net/atm/br2684.c
+ Which doesn't look like it ever made 2.6.
+ .
+ dannf> I've asked Al Viro & Marcelo for more info
Bugs:
-upstream: released (2.4.27-rc6)
+upstream: released (2.4.27-rc5)
linux-2.6:
2.6.8-sarge-security:
2.4.27-sarge-security: N/A
More information about the Kernel-svn-changes
mailing list