[kernel] r11445 - in dists/etch-security/linux-2.6/debian: . patches/bugfix patches/series

Dann Frazier dannf at alioth.debian.org
Thu May 22 20:51:56 UTC 2008 

Author: dannf
Date: Thu May 22 20:51:53 2008
New Revision: 11445

Log:
bugfix/amd64-cs-corruption.patch
[SECURITY] Fix local ptrace denial of service for amd64 flavor
kernels, bug #480390
See CVE-2008-1615

Added:
   dists/etch-security/linux-2.6/debian/patches/bugfix/amd64-cs-corruption.patch
Modified:
   dists/etch-security/linux-2.6/debian/changelog
   dists/etch-security/linux-2.6/debian/patches/series/18etch5

Modified: dists/etch-security/linux-2.6/debian/changelog
==============================================================================
--- dists/etch-security/linux-2.6/debian/changelog	(original)
+++ dists/etch-security/linux-2.6/debian/changelog	Thu May 22 20:51:53 2008
@@ -9,8 +9,12 @@
     [SECURITY] Fix potential infinite loop in hrtimer_forward on
     64-bit systems
     See CVE-2007-6712
+  * bugfix/amd64-cs-corruption.patch
+    [SECURITY] Fix local ptrace denial of service for amd64 flavor
+    kernels, bug #480390
+    See CVE-2008-1615
 
- -- dann frazier <dannf at debian.org>  Wed, 21 May 2008 01:14:18 -0600
+ -- dann frazier <dannf at debian.org>  Wed, 21 May 2008 01:29:13 -0600
 
 linux-2.6 (2.6.18.dfsg.1-18etch4) stable-security; urgency=high
 

Added: dists/etch-security/linux-2.6/debian/patches/bugfix/amd64-cs-corruption.patch
==============================================================================
--- (empty file)
+++ dists/etch-security/linux-2.6/debian/patches/bugfix/amd64-cs-corruption.patch	Thu May 22 20:51:53 2008
@@ -0,0 +1,12 @@
+diff -urpN linux-source-2.6.18.orig/arch/x86_64/kernel/entry.S linux-source-2.6.18/arch/x86_64/kernel/entry.S
+--- linux-source-2.6.18.orig/arch/x86_64/kernel/entry.S	2008-04-23 21:53:06.000000000 -0600
++++ linux-source-2.6.18/arch/x86_64/kernel/entry.S	2008-05-08 17:19:58.000000000 -0600
+@@ -776,7 +776,7 @@ paranoid_swapgs\trace:
+ 	swapgs
+ paranoid_restore\trace:
+ 	RESTORE_ALL 8
+-	iretq
++	jmp iret_label
+ paranoid_userspace\trace:
+ 	GET_THREAD_INFO(%rcx)
+ 	movl threadinfo_flags(%rcx),%ebx

Modified: dists/etch-security/linux-2.6/debian/patches/series/18etch5
==============================================================================
--- dists/etch-security/linux-2.6/debian/patches/series/18etch5	(original)
+++ dists/etch-security/linux-2.6/debian/patches/series/18etch5	Thu May 22 20:51:53 2008
@@ -1,3 +1,4 @@
 + bugfix/sit-missing-kfree_skb-on-pskb_may_pull.patch
 + bugfix/hrtimer-prevent-overrun.patch
 + bugfix/ktime-fix-MTIME_SEC_MAX-on-32-bit.patch
++ bugfix/amd64-cs-corruption.patch

More information about the Kernel-svn-changes mailing list