[kernel] r15532 - in dists/lenny-security/linux-2.6/debian: . patches/bugfix/all patches/series
Dann Frazier
dannf at alioth.debian.org
Thu Apr 22 04:51:01 UTC 2010
Author: dannf
Date: Thu Apr 22 04:50:59 2010
New Revision: 15532
Log:
GFS2: Skip check for mandatory locks when unlocking (CVE-2010-0727)
Added:
dists/lenny-security/linux-2.6/debian/patches/bugfix/all/gfs2-skip-check-for-mandatory-locks-when-unlocking.patch
Modified:
dists/lenny-security/linux-2.6/debian/changelog
dists/lenny-security/linux-2.6/debian/patches/series/21lenny5
Modified: dists/lenny-security/linux-2.6/debian/changelog
==============================================================================
--- dists/lenny-security/linux-2.6/debian/changelog Thu Apr 22 04:38:58 2010 (r15531)
+++ dists/lenny-security/linux-2.6/debian/changelog Thu Apr 22 04:50:59 2010 (r15532)
@@ -1,6 +1,7 @@
linux-2.6 (2.6.26-21lenny5) UNRELEASED; urgency=high
* USB: usbfs: only copy the actual data received (CVE-2010-1083)
+ * GFS2: Skip check for mandatory locks when unlocking (CVE-2010-0727)
-- dann frazier <dannf at debian.org> Wed, 21 Apr 2010 22:37:06 -0600
Added: dists/lenny-security/linux-2.6/debian/patches/bugfix/all/gfs2-skip-check-for-mandatory-locks-when-unlocking.patch
==============================================================================
--- /dev/null 00:00:00 1970 (empty, because file is newly added)
+++ dists/lenny-security/linux-2.6/debian/patches/bugfix/all/gfs2-skip-check-for-mandatory-locks-when-unlocking.patch Thu Apr 22 04:50:59 2010 (r15532)
@@ -0,0 +1,28 @@
+commit 14bea9ede1e6c24491168cb2333d93485c788972
+Author: Sachin Prabhu <sprabhu at redhat.com>
+Date: Thu Mar 11 12:24:45 2010 -0500
+
+ Backported to Debian's 2.6.26
+
+ GFS2: Skip check for mandatory locks when unlocking
+
+ gfs2_lock() will skip locks on file which have mode set to 02666. This is a problem in cases where the mode of the file is changed after a process has obtained a lock on the file. Such a lock will be skipped and will result in a BUG in locks_remove_flock().
+
+ gfs2_lock() should skip the check for mandatory locks when unlocking a file.
+
+ Signed-off-by: Sachin Prabhu <sprabhu at redhat.com>
+ Signed-off-by: Steven Whitehouse <swhiteho at redhat.com>
+
+diff --git a/fs/gfs2/ops_file.c b/fs/gfs2/ops_file.c
+index e1b7d52..34cc876 100644
+--- a/fs/gfs2/ops_file.c
++++ b/fs/gfs2/ops_file.c
+@@ -642,7 +642,7 @@ static int gfs2_lock(struct file *file, int cmd, struct file_lock *fl)
+
+ if (!(fl->fl_flags & FL_POSIX))
+ return -ENOLCK;
+- if (__mandatory_lock(&ip->i_inode))
++ if (__mandatory_lock(&ip->i_inode) && fl->fl_type != F_UNLCK)
+ return -ENOLCK;
+
+ if (cmd == F_CANCELLK) {
Modified: dists/lenny-security/linux-2.6/debian/patches/series/21lenny5
==============================================================================
--- dists/lenny-security/linux-2.6/debian/patches/series/21lenny5 Thu Apr 22 04:38:58 2010 (r15531)
+++ dists/lenny-security/linux-2.6/debian/patches/series/21lenny5 Thu Apr 22 04:50:59 2010 (r15532)
@@ -1 +1,2 @@
+ bugfix/all/usbfs-only-copy-received-data.patch
++ bugfix/all/gfs2-skip-check-for-mandatory-locks-when-unlocking.patch
More information about the Kernel-svn-changes
mailing list