[kernel] r17433 - in dists/squeeze-security/linux-2.6/debian: . patches/bugfix/all patches/series
Dann Frazier
dannf at alioth.debian.org
Tue May 17 07:09:11 UTC 2011
Author: dannf
Date: Tue May 17 07:09:02 2011
New Revision: 17433
Log:
Validate size of EFI GUID partition entries (CVE-2011-1577)
Added:
dists/squeeze-security/linux-2.6/debian/patches/bugfix/all/validate-size-of-efi-guid-partition-entries.patch
dists/squeeze-security/linux-2.6/debian/patches/series/34squeeze1
Modified:
dists/squeeze-security/linux-2.6/debian/changelog
Modified: dists/squeeze-security/linux-2.6/debian/changelog
==============================================================================
--- dists/squeeze-security/linux-2.6/debian/changelog Tue May 17 06:26:43 2011 (r17432)
+++ dists/squeeze-security/linux-2.6/debian/changelog Tue May 17 07:09:02 2011 (r17433)
@@ -1,3 +1,9 @@
+linux-2.6 (2.6.32-34squeeze1) UNRELEASED; urgency=high
+
+ * Validate size of EFI GUID partition entries (CVE-2011-1577)
+
+ -- dann frazier <dannf at debian.org> Tue, 17 May 2011 00:41:07 -0600
+
linux-2.6 (2.6.32-34) stable; urgency=high
[ Ian Campbell ]
Added: dists/squeeze-security/linux-2.6/debian/patches/bugfix/all/validate-size-of-efi-guid-partition-entries.patch
==============================================================================
--- /dev/null 00:00:00 1970 (empty, because file is newly added)
+++ dists/squeeze-security/linux-2.6/debian/patches/bugfix/all/validate-size-of-efi-guid-partition-entries.patch Tue May 17 07:09:02 2011 (r17433)
@@ -0,0 +1,29 @@
+commit fa039d5f6b126fbd65eefa05db2f67e44df8f121
+Author: Timo Warns <Warns at pre-sense.de>
+Date: Fri May 6 13:47:35 2011 +0200
+
+ Validate size of EFI GUID partition entries.
+
+ Otherwise corrupted EFI partition tables can cause total confusion.
+
+ Signed-off-by: Timo Warns <warns at pre-sense.de>
+ Cc: stable at kernel.org
+ Signed-off-by: Linus Torvalds <torvalds at linux-foundation.org>
+ [dannf: backported to Debian's 2.6.32]
+
+diff -urpN linux-source-2.6.32.orig/fs/partitions/efi.c linux-source-2.6.32/fs/partitions/efi.c
+--- linux-source-2.6.32.orig/fs/partitions/efi.c 2011-05-03 09:28:49.000000000 -0600
++++ linux-source-2.6.32/fs/partitions/efi.c 2011-05-17 00:36:47.701635525 -0600
+@@ -349,6 +349,12 @@ is_gpt_valid(struct block_device *bdev,
+ goto fail;
+ }
+
++ /* Check that sizeof_partition_entry has the correct value */
++ if (le32_to_cpu((*gpt)->sizeof_partition_entry) != sizeof(gpt_entry)) {
++ pr_debug("GUID Partitition Entry Size check failed.\n");
++ goto fail;
++ }
++
+ if (!(*ptes = alloc_read_gpt_entries(bdev, *gpt)))
+ goto fail;
+
Added: dists/squeeze-security/linux-2.6/debian/patches/series/34squeeze1
==============================================================================
--- /dev/null 00:00:00 1970 (empty, because file is newly added)
+++ dists/squeeze-security/linux-2.6/debian/patches/series/34squeeze1 Tue May 17 07:09:02 2011 (r17433)
@@ -0,0 +1,4 @@
++ bugfix/all/validate-size-of-efi-guid-partition-entries.patch
++ bugfix/all/cifs-clean-up-cifs_find_smb_ses.patch
++ bugfix/all/cifs-fix-NULL-pointer-dereference-in-cifs_find_smb_ses.patch
++ bugfix/all/cifs-check-for-NULL-session-password.patch
More information about the Kernel-svn-changes
mailing list