[kernel] r13444 - in dists/etch-security/linux-2.6/debian: . patches/bugfix/all patches/series

Dann Frazier dannf at alioth.debian.org
Sun Apr 19 00:52:43 UTC 2009 

Author: dannf
Date: Sun Apr 19 00:52:42 2009
New Revision: 13444

Log:
* exit_notify: kill the wrong capable(CAP_KILL) check
   - bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch
  See CVE-2009-1337

Added:
   dists/etch-security/linux-2.6/debian/patches/bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch
      - copied, changed from r13439, dists/etch-security/linux-2.6.24/debian/patches/bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch
Modified:
   dists/etch-security/linux-2.6/debian/changelog
   dists/etch-security/linux-2.6/debian/patches/series/24etch1

Modified: dists/etch-security/linux-2.6/debian/changelog
==============================================================================
--- dists/etch-security/linux-2.6/debian/changelog	Sun Apr 19 00:44:06 2009	(r13443)
+++ dists/etch-security/linux-2.6/debian/changelog	Sun Apr 19 00:52:42 2009	(r13444)
@@ -50,6 +50,9 @@
   * NFS: fix an oops in encode_lookup()
      - bugfix/all/nfs-fix-oops-in-encode_lookup.patch
     See CVE-2009-1336
+  * exit_notify: kill the wrong capable(CAP_KILL) check
+     - bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch
+    See CVE-2009-1337
 
  -- dann frazier <dannf at debian.org>  Tue, 24 Feb 2009 23:49:22 -0700
 

Copied and modified: dists/etch-security/linux-2.6/debian/patches/bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch (from r13439, dists/etch-security/linux-2.6.24/debian/patches/bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch)
==============================================================================
--- dists/etch-security/linux-2.6.24/debian/patches/bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch	Sat Apr 18 20:51:49 2009	(r13439, copy source)
+++ dists/etch-security/linux-2.6/debian/patches/bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch	Sun Apr 19 00:52:42 2009	(r13444)
@@ -14,13 +14,13 @@
     Acked-by: Roland McGrath <roland at redhat.com>
     Signed-off-by: Linus Torvalds <torvalds at linux-foundation.org>
 
-Adjusted to apply to Debian's 2.6.24 by dann frazier <dannf at debian.org>
+Adjusted to apply to Debian's 2.6.18 by dann frazier <dannf at debian.org>
 
-diff -urpN linux-source-2.6.24.orig/kernel/exit.c linux-source-2.6.24/kernel/exit.c
---- linux-source-2.6.24.orig/kernel/exit.c	2009-04-11 14:35:49.000000000 -0600
-+++ linux-source-2.6.24/kernel/exit.c	2009-04-18 14:49:36.000000000 -0600
-@@ -813,8 +813,7 @@ static void exit_notify(struct task_stru
- 	 */
+diff -urpN linux-source-2.6.18.orig/kernel/exit.c linux-source-2.6.18/kernel/exit.c
+--- linux-source-2.6.18.orig/kernel/exit.c	2008-12-25 14:04:13.000000000 -0700
++++ linux-source-2.6.18/kernel/exit.c	2009-04-18 18:46:03.000000000 -0600
+@@ -806,8 +806,7 @@ static void exit_notify(struct task_stru
+ 	
  	if (tsk->exit_signal != SIGCHLD && tsk->exit_signal != -1 &&
  	    ( tsk->parent_exec_id != t->self_exec_id  ||
 -	      tsk->self_exec_id != tsk->parent_exec_id)

Modified: dists/etch-security/linux-2.6/debian/patches/series/24etch1
==============================================================================
--- dists/etch-security/linux-2.6/debian/patches/series/24etch1	Sun Apr 19 00:44:06 2009	(r13443)
+++ dists/etch-security/linux-2.6/debian/patches/series/24etch1	Sun Apr 19 00:52:42 2009	(r13444)
@@ -76,3 +76,4 @@
 + bugfix/all/copy_process-fix-CLONE_PARENT-and-parent_exec_id-interaction.patch
 + bugfix/all/af_rose+x25-sanity-check-the-max-user-frame-size.patch
 + bugfix/all/nfs-fix-oops-in-encode_lookup.patch
++ bugfix/all/exit_notify-kill-wrong-CAP_KILL-check.patch

More information about the Kernel-svn-changes mailing list