[kernel] r13344 - in dists/etch-security/linux-2.6.24/debian: . patches/bugfix patches/series

Dann Frazier dannf at alioth.debian.org
Mon Apr 6 06:01:12 UTC 2009 

Author: dannf
Date: Mon Apr  6 06:01:09 2009
New Revision: 13344

Log:
[amd64] syscall-audit: fix 32/64 syscall hole (CVE-2009-0834)

Added:
   dists/etch-security/linux-2.6.24/debian/patches/bugfix/syscall-audit-fix-32+64-syscall-hole.patch
      - copied, changed from r13329, dists/lenny-security/linux-2.6/debian/patches/bugfix/x86/syscall-audit-fix-32+64-syscall-hole.patch
Modified:
   dists/etch-security/linux-2.6.24/debian/changelog
   dists/etch-security/linux-2.6.24/debian/patches/series/6~etchnhalf.8etch1

Modified: dists/etch-security/linux-2.6.24/debian/changelog
==============================================================================
--- dists/etch-security/linux-2.6.24/debian/changelog	Mon Apr  6 05:43:12 2009	(r13343)
+++ dists/etch-security/linux-2.6.24/debian/changelog	Mon Apr  6 06:01:09 2009	(r13344)
@@ -21,6 +21,7 @@
   * ext4: initialize the new group descriptor when resizing
     (CVE-2009-0745)
   * ext4: Add sanity check to make_indexed_dir (CVE-2009-0746)
+  * [amd64] syscall-audit: fix 32/64 syscall hole (CVE-2009-0834)
 
  -- dann frazier <dannf at debian.org>  Tue, 24 Feb 2009 23:25:36 -0700
 

Copied and modified: dists/etch-security/linux-2.6.24/debian/patches/bugfix/syscall-audit-fix-32+64-syscall-hole.patch (from r13329, dists/lenny-security/linux-2.6/debian/patches/bugfix/x86/syscall-audit-fix-32+64-syscall-hole.patch)
==============================================================================
--- dists/lenny-security/linux-2.6/debian/patches/bugfix/x86/syscall-audit-fix-32+64-syscall-hole.patch	Sat Apr  4 17:17:16 2009	(r13329, copy source)
+++ dists/etch-security/linux-2.6.24/debian/patches/bugfix/syscall-audit-fix-32+64-syscall-hole.patch	Mon Apr  6 06:01:09 2009	(r13344)
@@ -16,18 +16,18 @@
     Signed-off-by: Roland McGrath <roland at redhat.com>
     Signed-off-by: Linus Torvalds <torvalds at linux-foundation.org>
 
-Backported to Debian's 2.6.26 by dann frazier <dannf at debian.org>
+Backported to Debian's 2.6.24 by dann frazier <dannf at debian.org>
 Based on Eugene Teo's backport for RHEL5
 
-diff -urpN linux-source-2.6.26.orig/arch/x86/kernel/ptrace.c linux-source-2.6.26/arch/x86/kernel/ptrace.c
---- linux-source-2.6.26.orig/arch/x86/kernel/ptrace.c	2009-03-25 17:20:38.000000000 -0600
-+++ linux-source-2.6.26/arch/x86/kernel/ptrace.c	2009-04-04 11:09:01.000000000 -0600
-@@ -1491,7 +1491,7 @@ asmlinkage void syscall_trace_enter(stru
+diff -urpN a/arch/x86/kernel/ptrace_64.c b/arch/x86/kernel/ptrace_64.c
+--- a/arch/x86/kernel/ptrace_64.c	2008-01-24 15:58:37.000000000 -0700
++++ b/arch/x86/kernel/ptrace_64.c	2009-04-05 23:54:55.000000000 -0600
+@@ -595,7 +595,7 @@ asmlinkage void syscall_trace_enter(stru
  		syscall_trace(regs);
  
  	if (unlikely(current->audit_context)) {
 -		if (test_thread_flag(TIF_IA32)) {
 +		if (is_compat_task()) {
  			audit_syscall_entry(AUDIT_ARCH_I386,
- 					    regs->orig_ax,
- 					    regs->bx, regs->cx,
+ 					    regs->orig_rax,
+ 					    regs->rbx, regs->rcx,

Modified: dists/etch-security/linux-2.6.24/debian/patches/series/6~etchnhalf.8etch1
==============================================================================
--- dists/etch-security/linux-2.6.24/debian/patches/series/6~etchnhalf.8etch1	Mon Apr  6 05:43:12 2009	(r13343)
+++ dists/etch-security/linux-2.6.24/debian/patches/series/6~etchnhalf.8etch1	Mon Apr  6 06:01:09 2009	(r13344)
@@ -75,3 +75,4 @@
 + bugfix/all/skfp-fix-inverted-cap-logic.patch
 + bugfix/all/ext4-initialize-the-new-group-descriptor-when-resizing-the-filesystem.patch
 + bugfix/all/ext4-add-sanity-check-to-make_indexed_dir.patch
++ bugfix/syscall-audit-fix-32+64-syscall-hole.patch

More information about the Kernel-svn-changes mailing list