[kernel] r17101 - in dists/squeeze/linux-2.6/debian: . patches/features/all/vserver patches/series

Ben Hutchings benh at alioth.debian.org
Tue Mar 22 06:13:11 UTC 2011 

Author: benh
Date: Tue Mar 22 06:12:50 2011
New Revision: 17101

Log:
[vserver] Complete fix for CVE-2010-4243 (Closes: #618485)

Added:
   dists/squeeze/linux-2.6/debian/patches/features/all/vserver/vserver-complete-fix-for-CVE-2010-4243.patch
Modified:
   dists/squeeze/linux-2.6/debian/changelog
   dists/squeeze/linux-2.6/debian/patches/series/32-extra

Modified: dists/squeeze/linux-2.6/debian/changelog
==============================================================================
--- dists/squeeze/linux-2.6/debian/changelog	Tue Mar 22 04:07:46 2011	(r17100)
+++ dists/squeeze/linux-2.6/debian/changelog	Tue Mar 22 06:12:50 2011	(r17101)
@@ -18,6 +18,7 @@
   * Revert "drm/i915: Add pipe A force quirk for some laptops"
     (Closes: #618665; reopens: #608148)
   * scsi: Re-enable SCSI_PROC_FS (/proc/scsi directory) (Closes: #618258)
+  * [vserver] Complete fix for CVE-2010-4243 (Closes: #618485)
 
  -- Ben Hutchings <ben at decadent.org.uk>  Sat, 12 Mar 2011 20:20:58 +0000
 

Added: dists/squeeze/linux-2.6/debian/patches/features/all/vserver/vserver-complete-fix-for-CVE-2010-4243.patch
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ dists/squeeze/linux-2.6/debian/patches/features/all/vserver/vserver-complete-fix-for-CVE-2010-4243.patch	Tue Mar 22 06:12:50 2011	(r17101)
@@ -0,0 +1,19 @@
+From: Ben Hutchings <ben at decadent.org.uk>
+Subject: [PATCH] vserver: Complete fix for CVE-2010-4243
+
+VServer requires all adjustments to mm_struct::total_vm to be
+accounted to the server as well.
+
+Signed-off-by: Ben Hutchings <ben at decadent.org.uk>
+---
+--- a/fs/exec.c
++++ b/fs/exec.c
+@@ -169,7 +169,7 @@
+ 		return;
+ 
+ 	down_write(&mm->mmap_sem);
+-	mm->total_vm += diff;
++	vx_vmpages_add(mm, diff);
+ 	up_write(&mm->mmap_sem);
+ }
+ 

Modified: dists/squeeze/linux-2.6/debian/patches/series/32-extra
==============================================================================
--- dists/squeeze/linux-2.6/debian/patches/series/32-extra	Tue Mar 22 04:07:46 2011	(r17100)
+++ dists/squeeze/linux-2.6/debian/patches/series/32-extra	Tue Mar 22 06:12:50 2011	(r17101)
@@ -8,6 +8,7 @@
 
 + debian/revert-sched-changes-in-2.6.32.29.patch featureset=vserver
 + features/all/vserver/vs2.3.0.36.29.6.patch featureset=vserver
++ features/all/vserver/vserver-complete-fix-for-CVE-2010-4243.patch featureset=vserver
 
 + features/all/xen/pvops.patch featureset=xen
 + features/all/xen/xen-netfront-make-smartpoll-optional-and-default-off.patch featureset=xen

More information about the Kernel-svn-changes mailing list