[kernel] r11236 - in dists/etch-security/linux-2.6/debian: . arch arch/alpha arch/alpha/vserver arch/amd64 arch/amd64/vserver arch/amd64/xen arch/amd64/xen-vserver arch/arm arch/hppa arch/i386 arch/i386/vserver arch/i386/xen arch/i386/xen-vserver arch/ia64 arch/mips arch/mipsel arch/powerpc arch/powerpc/vserver arch/s390 arch/s390/vserver arch/sparc arch/sparc/vserver patches/bugfix patches/series
Dann Frazier
dannf at alioth.debian.org
Thu May 1 19:47:58 UTC 2008
Author: dannf
Date: Thu May 1 19:47:55 2008
New Revision: 11236
Log:
commit changes for 2.6.18.dfsg.1-18etch2 (superseded by etch3 before release)
Added:
dists/etch-security/linux-2.6/debian/patches/bugfix/dnotify-race.patch
Removed:
dists/etch-security/linux-2.6/debian/arch/alpha/abi-6.alpha-generic
dists/etch-security/linux-2.6/debian/arch/alpha/abi-6.alpha-legacy
dists/etch-security/linux-2.6/debian/arch/alpha/abi-6.alpha-smp
dists/etch-security/linux-2.6/debian/arch/alpha/vserver/abi-6.alpha
dists/etch-security/linux-2.6/debian/arch/amd64/abi-6.amd64
dists/etch-security/linux-2.6/debian/arch/amd64/vserver/abi-6.amd64
dists/etch-security/linux-2.6/debian/arch/amd64/xen-vserver/abi-6.amd64
dists/etch-security/linux-2.6/debian/arch/amd64/xen/abi-6.amd64
dists/etch-security/linux-2.6/debian/arch/arm/abi-6.footbridge
dists/etch-security/linux-2.6/debian/arch/arm/abi-6.iop32x
dists/etch-security/linux-2.6/debian/arch/arm/abi-6.ixp4xx
dists/etch-security/linux-2.6/debian/arch/arm/abi-6.rpc
dists/etch-security/linux-2.6/debian/arch/arm/abi-6.s3c2410
dists/etch-security/linux-2.6/debian/arch/hppa/abi-6.parisc
dists/etch-security/linux-2.6/debian/arch/hppa/abi-6.parisc-smp
dists/etch-security/linux-2.6/debian/arch/hppa/abi-6.parisc64
dists/etch-security/linux-2.6/debian/arch/hppa/abi-6.parisc64-smp
dists/etch-security/linux-2.6/debian/arch/i386/abi-6.486
dists/etch-security/linux-2.6/debian/arch/i386/abi-6.686
dists/etch-security/linux-2.6/debian/arch/i386/abi-6.686-bigmem
dists/etch-security/linux-2.6/debian/arch/i386/abi-6.amd64
dists/etch-security/linux-2.6/debian/arch/i386/abi-6.k7
dists/etch-security/linux-2.6/debian/arch/i386/vserver/abi-6.686
dists/etch-security/linux-2.6/debian/arch/i386/vserver/abi-6.k7
dists/etch-security/linux-2.6/debian/arch/i386/xen-vserver/abi-6.686
dists/etch-security/linux-2.6/debian/arch/i386/xen/abi-6.686
dists/etch-security/linux-2.6/debian/arch/ia64/abi-6.itanium
dists/etch-security/linux-2.6/debian/arch/ia64/abi-6.mckinley
dists/etch-security/linux-2.6/debian/arch/mips/abi-6.qemu
dists/etch-security/linux-2.6/debian/arch/mips/abi-6.r4k-ip22
dists/etch-security/linux-2.6/debian/arch/mips/abi-6.r5k-ip32
dists/etch-security/linux-2.6/debian/arch/mips/abi-6.sb1-bcm91250a
dists/etch-security/linux-2.6/debian/arch/mips/abi-6.sb1a-bcm91480b
dists/etch-security/linux-2.6/debian/arch/mipsel/abi-6.qemu
dists/etch-security/linux-2.6/debian/arch/mipsel/abi-6.r3k-kn02
dists/etch-security/linux-2.6/debian/arch/mipsel/abi-6.r4k-kn04
dists/etch-security/linux-2.6/debian/arch/mipsel/abi-6.r5k-cobalt
dists/etch-security/linux-2.6/debian/arch/mipsel/abi-6.sb1-bcm91250a
dists/etch-security/linux-2.6/debian/arch/mipsel/abi-6.sb1a-bcm91480b
dists/etch-security/linux-2.6/debian/arch/powerpc/abi-6.powerpc
dists/etch-security/linux-2.6/debian/arch/powerpc/abi-6.powerpc-miboot
dists/etch-security/linux-2.6/debian/arch/powerpc/abi-6.powerpc-smp
dists/etch-security/linux-2.6/debian/arch/powerpc/abi-6.powerpc64
dists/etch-security/linux-2.6/debian/arch/powerpc/abi-6.prep
dists/etch-security/linux-2.6/debian/arch/powerpc/vserver/abi-6.powerpc
dists/etch-security/linux-2.6/debian/arch/powerpc/vserver/abi-6.powerpc64
dists/etch-security/linux-2.6/debian/arch/s390/abi-6.s390
dists/etch-security/linux-2.6/debian/arch/s390/abi-6.s390x
dists/etch-security/linux-2.6/debian/arch/s390/vserver/abi-6.s390x
dists/etch-security/linux-2.6/debian/arch/sparc/abi-6.sparc32
dists/etch-security/linux-2.6/debian/arch/sparc/abi-6.sparc64
dists/etch-security/linux-2.6/debian/arch/sparc/abi-6.sparc64-smp
dists/etch-security/linux-2.6/debian/arch/sparc/vserver/abi-6.sparc64
Modified:
dists/etch-security/linux-2.6/debian/arch/defines
dists/etch-security/linux-2.6/debian/changelog
dists/etch-security/linux-2.6/debian/patches/series/18etch2
Modified: dists/etch-security/linux-2.6/debian/arch/defines
==============================================================================
--- dists/etch-security/linux-2.6/debian/arch/defines (original)
+++ dists/etch-security/linux-2.6/debian/arch/defines Thu May 1 19:47:55 2008
@@ -1,5 +1,5 @@
[abi]
-abiname: 6
+abiname: 7
[base]
arches:
Modified: dists/etch-security/linux-2.6/debian/changelog
==============================================================================
--- dists/etch-security/linux-2.6/debian/changelog (original)
+++ dists/etch-security/linux-2.6/debian/changelog Thu May 1 19:47:55 2008
@@ -1,4 +1,4 @@
-linux-2.6 (2.6.18.dfsg.1-18etch2) UNRELEASED; urgency=low
+linux-2.6 (2.6.18.dfsg.1-18etch2) stable-security; urgency=high
* bugfix/powerpc-chrp-null-deref.patch
[SECURITY][powerpc] Fix NULL pointer dereference if get_property
@@ -12,8 +12,13 @@
[SECURITY] Move check for an RLIMIT_CPU with a value of 0 earlier
to prevent a user escape (closes: #419706)
See CVE-2008-1294
+ * bugfix/dnotify-race.patch
+ [SECURITY] Fix a race in the directory notify
+ See CVE-2008-1375
+ This patch changes the ABI
+ * Bump ABI to 7.
- -- dann frazier <dannf at debian.org> Fri, 04 Apr 2008 18:10:38 -0600
+ -- dann frazier <dannf at debian.org> Fri, 11 Apr 2008 23:51:42 -0600
linux-2.6 (2.6.18.dfsg.1-18etch1) stable-security; urgency=high
@@ -3476,3 +3481,23 @@
-- Andres Salomon <dilinger at debian.org> Wed, 20 Jul 2005 17:16:04 -0400
+linux-2.6 (2.6.18.dfsg.1-18etch2.1) stable-security; urgency=high
+
+ * bugfix/powerpc-chrp-null-deref.patch
+ [SECURITY][powerpc] Fix NULL pointer dereference if get_property
+ fails on the subarchitecture
+ See CVE-2007-6694
+ * bugfix/mmap-VM_DONTEXPAND.patch
+ [SECURITY] Add VM_DONTEXPAND to vm_flags in drivers that register
+ a fault handler but do not bounds check the offset argument
+ See CVE-2008-0007
+ * bugfix/RLIMIT_CPU-earlier-checking.patch
+ [SECURITY] Move check for an RLIMIT_CPU with a value of 0 earlier
+ to prevent a user escape (closes: #419706)
+ See CVE-2008-1294
+ * bugfix/dnotify-race.patch
+ [SECURITY] Fix a race in the directory notify
+ See CVE-2008-1375
+ *
+
+ -- dann frazier <dannf at debian.org> Fri, 11 Apr 2008 23:51:42 -0600
Added: dists/etch-security/linux-2.6/debian/patches/bugfix/dnotify-race.patch
==============================================================================
--- (empty file)
+++ dists/etch-security/linux-2.6/debian/patches/bugfix/dnotify-race.patch Thu May 1 19:47:55 2008
@@ -0,0 +1,22 @@
+diff -urpN linux-source-2.6.18.orig/fs/dnotify.c linux-source-2.6.18/fs/dnotify.c
+--- linux-source-2.6.18.orig/fs/dnotify.c 2006-09-19 21:42:06.000000000 -0600
++++ linux-source-2.6.18/fs/dnotify.c 2008-04-09 13:50:42.000000000 -0600
+@@ -20,6 +20,7 @@
+ #include <linux/init.h>
+ #include <linux/spinlock.h>
+ #include <linux/slab.h>
++#include <linux/file.h>
+
+ int dir_notify_enable __read_mostly = 1;
+
+@@ -92,6 +93,10 @@ int fcntl_dirnotify(int fd, struct file
+ prev = &odn->dn_next;
+ }
+
++ /* we'd lost the race with close(), sod off silently */
++ if (fcheck(fd) != filp)
++ goto out_free;
++
+ error = f_setown(filp, current->pid, 0);
+ if (error)
+ goto out_free;
Modified: dists/etch-security/linux-2.6/debian/patches/series/18etch2
==============================================================================
--- dists/etch-security/linux-2.6/debian/patches/series/18etch2 (original)
+++ dists/etch-security/linux-2.6/debian/patches/series/18etch2 Thu May 1 19:47:55 2008
@@ -1,3 +1,4 @@
+ bugfix/powerpc-chrp-null-deref.patch
+ bugfix/mmap-VM_DONTEXPAND.patch
+ bugfix/RLIMIT_CPU-earlier-checking.patch
++ bugfix/dnotify-race.patch
More information about the Kernel-svn-changes
mailing list