[kernel] r11514 - in dists/etch/linux-2.6.24/debian: . patches/bugfix patches/series

Dann Frazier dannf at alioth.debian.org
Wed Jun 4 06:33:19 UTC 2008 

Author: dannf
Date: Wed Jun  4 06:33:16 2008
New Revision: 11514

Log:
Fix local ptrace denial of service for amd64 flavor kernels, see #480390.
(CVE-2008-1615)

Added:
   dists/etch/linux-2.6.24/debian/patches/bugfix/amd64-cs-corruption.patch
Modified:
   dists/etch/linux-2.6.24/debian/changelog
   dists/etch/linux-2.6.24/debian/patches/series/6~etchnhalf.3

Modified: dists/etch/linux-2.6.24/debian/changelog
==============================================================================
--- dists/etch/linux-2.6.24/debian/changelog	(original)
+++ dists/etch/linux-2.6.24/debian/changelog	Wed Jun  4 06:33:16 2008
@@ -4,8 +4,10 @@
     (CVE-2008-2148)
   * Fix remotely-triggerable memory leak in the Simple Internet Transition
     (SIT) code used for IPv6 over IPv4 tunnels (CVE-2008-2136)
+  * Fix local ptrace denial of service for amd64 flavor kernels, see #480390.
+    (CVE-2008-1615)
 
- -- dann frazier <dannf at debian.org>  Wed, 21 May 2008 00:04:25 -0600
+ -- dann frazier <dannf at debian.org>  Tue, 03 Jun 2008 01:30:06 -0600
 
 linux-2.6.24 (2.6.24-6~etchnhalf.2) stable; urgency=low
 

Added: dists/etch/linux-2.6.24/debian/patches/bugfix/amd64-cs-corruption.patch
==============================================================================
--- (empty file)
+++ dists/etch/linux-2.6.24/debian/patches/bugfix/amd64-cs-corruption.patch	Wed Jun  4 06:33:16 2008
@@ -0,0 +1,12 @@
+diff -urpN linux-source-2.6.24.orig/arch/x86/kernel/entry_64.S linux-source-2.6.24/arch/x86/kernel/entry_64.S
+--- linux-source-2.6.24.orig/arch/x86/kernel/entry_64.S	2008-01-24 15:58:37.000000000 -0700
++++ linux-source-2.6.24/arch/x86/kernel/entry_64.S	2008-06-03 01:26:47.000000000 -0600
+@@ -779,7 +779,7 @@ paranoid_swapgs\trace:
+ 	swapgs
+ paranoid_restore\trace:
+ 	RESTORE_ALL 8
+-	iretq
++	jmp iret_label
+ paranoid_userspace\trace:
+ 	GET_THREAD_INFO(%rcx)
+ 	movl threadinfo_flags(%rcx),%ebx

Modified: dists/etch/linux-2.6.24/debian/patches/series/6~etchnhalf.3
==============================================================================
--- dists/etch/linux-2.6.24/debian/patches/series/6~etchnhalf.3	(original)
+++ dists/etch/linux-2.6.24/debian/patches/series/6~etchnhalf.3	Wed Jun  4 06:33:16 2008
@@ -1,2 +1,3 @@
 + bugfix/vfs-fix-permission-checking-in-sys_utimensat.patch
 + bugfix/sit-missing-kfree_skb-on-pskb_may_pull.patch
++ bugfix/amd64-cs-corruption.patch

More information about the Kernel-svn-changes mailing list