[kernel] r10502 - in dists/sid/linux-2.6/debian: . patches/bugfix/all/stable patches/series

Bastian Blank waldi at alioth.debian.org
Mon Feb 11 08:50:21 UTC 2008 

Author: waldi
Date: Mon Feb 11 08:50:20 2008
New Revision: 10502

Log:
Add stable release 2.6.24.2

* debian/changelog: Update.
* debian/patches/bugfix/all/stable/2.6.24.2.patch: Add.
* debian/patches/series/4: Add new patch.


Added:
   dists/sid/linux-2.6/debian/patches/bugfix/all/stable/2.6.24.2.patch
Modified:
   dists/sid/linux-2.6/debian/changelog
   dists/sid/linux-2.6/debian/patches/series/4

Modified: dists/sid/linux-2.6/debian/changelog
==============================================================================
--- dists/sid/linux-2.6/debian/changelog	(original)
+++ dists/sid/linux-2.6/debian/changelog	Mon Feb 11 08:50:20 2008
@@ -51,6 +51,11 @@
   * [arm/ixp4xx] Enble ATA_OVER_ETH, requested by Nicola Fankhauser.
   * [arm/iop32x] Enble ATA_OVER_ETH.
 
+  [ Bastian Blank ]
+  * Add stable release 2.6.24.2:
+    - splice: fix user pointer access in get_iovec_page_array()
+    (CVE-2008-0600, closes: #464945)
+
  -- Bastian Blank <waldi at debian.org>  Fri, 08 Feb 2008 22:26:16 +0100
 
 linux-2.6 (2.6.24-3) unstable; urgency=low

Added: dists/sid/linux-2.6/debian/patches/bugfix/all/stable/2.6.24.2.patch
==============================================================================
--- (empty file)
+++ dists/sid/linux-2.6/debian/patches/bugfix/all/stable/2.6.24.2.patch	Mon Feb 11 08:50:20 2008
@@ -0,0 +1,15 @@
+diff --git a/Makefile b/Makefile
+index e6a6eec..6f79564 100644
+diff --git a/fs/splice.c b/fs/splice.c
+index 36fdc61..e313478 100644
+--- a/fs/splice.c
++++ b/fs/splice.c
+@@ -1239,7 +1239,7 @@ static int get_iovec_page_array(const struct iovec __user *iov,
+ 		if (unlikely(!len))
+ 			break;
+ 		error = -EFAULT;
+-		if (unlikely(!base))
++		if (!access_ok(VERIFY_READ, base, len))
+ 			break;
+ 
+ 		/*

Modified: dists/sid/linux-2.6/debian/patches/series/4
==============================================================================
--- dists/sid/linux-2.6/debian/patches/series/4	(original)
+++ dists/sid/linux-2.6/debian/patches/series/4	Mon Feb 11 08:50:20 2008
@@ -1,2 +1,3 @@
 - bugfix/all/slab-fix-bootstrap-on-memoryless-node.patch
 + bugfix/all/stable/2.6.24.1.patch
++ bugfix/all/stable/2.6.24.2.patch

More information about the Kernel-svn-changes mailing list