[kernel] r15170 - in dists/etch-security/linux-2.6/debian: . patches/bugfix/all patches/series
Dann Frazier
dannf at alioth.debian.org
Tue Feb 16 04:44:38 UTC 2010
Author: dannf
Date: Tue Feb 16 04:44:36 2010
New Revision: 15170
Log:
Fix potential crash with sys_move_pages (CVE-2010-0415)
Added:
dists/etch-security/linux-2.6/debian/patches/bugfix/all/fix-potential-crash-with-sys_move_pages.patch
Modified:
dists/etch-security/linux-2.6/debian/changelog
dists/etch-security/linux-2.6/debian/patches/series/26etch2
Modified: dists/etch-security/linux-2.6/debian/changelog
==============================================================================
--- dists/etch-security/linux-2.6/debian/changelog Tue Feb 16 04:35:21 2010 (r15169)
+++ dists/etch-security/linux-2.6/debian/changelog Tue Feb 16 04:44:36 2010 (r15170)
@@ -9,6 +9,7 @@
* e1000: enhance frame fragment detection (CVE-2009-4536)
* netfilter: ebtables: enforce CAP_NET_ADMIN (CVE-2010-0007)
* connector: Delete buggy notification code. (CVE-2010-0410)
+ * Fix potential crash with sys_move_pages (CVE-2010-0415)
-- dann frazier <dannf at debian.org> Mon, 15 Feb 2010 18:32:14 -0700
Added: dists/etch-security/linux-2.6/debian/patches/bugfix/all/fix-potential-crash-with-sys_move_pages.patch
==============================================================================
--- /dev/null 00:00:00 1970 (empty, because file is newly added)
+++ dists/etch-security/linux-2.6/debian/patches/bugfix/all/fix-potential-crash-with-sys_move_pages.patch Tue Feb 16 04:44:36 2010 (r15170)
@@ -0,0 +1,25 @@
+commit 9fbce8e744c23975e8d310e403c35094a84a531f
+Author: dann frazier <dannf at hp.com>
+Date: Mon Feb 15 21:40:34 2010 -0700
+
+ [ Adjusted to apply to Debian's 2.6.18 ]
+ commit 6f5a55f1a6c5abee15a0e878e5c74d9f1569b8b0
+ Author: Linus Torvalds <torvalds at linux-foundation.org>
+ Date: Fri Feb 5 16:16:50 2010 -0800
+
+ Fix potential crash with sys_move_pages
+
+diff --git a/mm/migrate.c b/mm/migrate.c
+index 01d0274..bf8559f 100644
+--- a/mm/migrate.c
++++ b/mm/migrate.c
+@@ -943,6 +943,9 @@ SYSCALL_DEFINE6(move_pages, pid_t, pid, unsigned long, nr_pages,
+ goto out;
+
+ err = -ENODEV;
++ if (node < 0 || node >= MAX_NUMNODES)
++ goto out;
++
+ if (!node_online(node))
+ goto out;
+
Modified: dists/etch-security/linux-2.6/debian/patches/series/26etch2
==============================================================================
--- dists/etch-security/linux-2.6/debian/patches/series/26etch2 Tue Feb 16 04:35:21 2010 (r15169)
+++ dists/etch-security/linux-2.6/debian/patches/series/26etch2 Tue Feb 16 04:44:36 2010 (r15170)
@@ -6,3 +6,4 @@
+ bugfix/all/e1000-enhance-frame-fragment-detection.patch
+ bugfix/all/netfilter-ebtables-enforce-CAP_NET_ADMIN.patch
+ bugfix/all/connector-delete-buggy-notification-code.patch
++ bugfix/all/fix-potential-crash-with-sys_move_pages.patch
More information about the Kernel-svn-changes
mailing list