[kernel] r17433 - in dists/squeeze-security/linux-2.6/debian: . patches/bugfix/all patches/series

Dann Frazier dannf at alioth.debian.org
Tue May 17 07:09:11 UTC 2011 

Author: dannf
Date: Tue May 17 07:09:02 2011
New Revision: 17433

Log:
Validate size of EFI GUID partition entries (CVE-2011-1577)

Added:
   dists/squeeze-security/linux-2.6/debian/patches/bugfix/all/validate-size-of-efi-guid-partition-entries.patch
   dists/squeeze-security/linux-2.6/debian/patches/series/34squeeze1
Modified:
   dists/squeeze-security/linux-2.6/debian/changelog

Modified: dists/squeeze-security/linux-2.6/debian/changelog
==============================================================================
--- dists/squeeze-security/linux-2.6/debian/changelog	Tue May 17 06:26:43 2011	(r17432)
+++ dists/squeeze-security/linux-2.6/debian/changelog	Tue May 17 07:09:02 2011	(r17433)
@@ -1,3 +1,9 @@
+linux-2.6 (2.6.32-34squeeze1) UNRELEASED; urgency=high
+
+  * Validate size of EFI GUID partition entries (CVE-2011-1577)
+
+ -- dann frazier <dannf at debian.org>  Tue, 17 May 2011 00:41:07 -0600
+
 linux-2.6 (2.6.32-34) stable; urgency=high
 
   [ Ian Campbell ]

Added: dists/squeeze-security/linux-2.6/debian/patches/bugfix/all/validate-size-of-efi-guid-partition-entries.patch
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ dists/squeeze-security/linux-2.6/debian/patches/bugfix/all/validate-size-of-efi-guid-partition-entries.patch	Tue May 17 07:09:02 2011	(r17433)
@@ -0,0 +1,29 @@
+commit fa039d5f6b126fbd65eefa05db2f67e44df8f121
+Author: Timo Warns <Warns at pre-sense.de>
+Date:   Fri May 6 13:47:35 2011 +0200
+
+    Validate size of EFI GUID partition entries.
+    
+    Otherwise corrupted EFI partition tables can cause total confusion.
+    
+    Signed-off-by: Timo Warns <warns at pre-sense.de>
+    Cc: stable at kernel.org
+    Signed-off-by: Linus Torvalds <torvalds at linux-foundation.org>
+    [dannf: backported to Debian's 2.6.32]
+
+diff -urpN linux-source-2.6.32.orig/fs/partitions/efi.c linux-source-2.6.32/fs/partitions/efi.c
+--- linux-source-2.6.32.orig/fs/partitions/efi.c	2011-05-03 09:28:49.000000000 -0600
++++ linux-source-2.6.32/fs/partitions/efi.c	2011-05-17 00:36:47.701635525 -0600
+@@ -349,6 +349,12 @@ is_gpt_valid(struct block_device *bdev,
+ 		goto fail;
+ 	}
+ 
++	/* Check that sizeof_partition_entry has the correct value */
++	if (le32_to_cpu((*gpt)->sizeof_partition_entry) != sizeof(gpt_entry)) {
++		pr_debug("GUID Partitition Entry Size check failed.\n");
++		goto fail;
++	}
++
+ 	if (!(*ptes = alloc_read_gpt_entries(bdev, *gpt)))
+ 		goto fail;
+ 

Added: dists/squeeze-security/linux-2.6/debian/patches/series/34squeeze1
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ dists/squeeze-security/linux-2.6/debian/patches/series/34squeeze1	Tue May 17 07:09:02 2011	(r17433)
@@ -0,0 +1,4 @@
++ bugfix/all/validate-size-of-efi-guid-partition-entries.patch
++ bugfix/all/cifs-clean-up-cifs_find_smb_ses.patch
++ bugfix/all/cifs-fix-NULL-pointer-dereference-in-cifs_find_smb_ses.patch
++ bugfix/all/cifs-check-for-NULL-session-password.patch

More information about the Kernel-svn-changes mailing list