[kernel] r19848 - in dists/squeeze-security/linux-2.6/debian: . patches/features/all/xen patches/series

Sun Feb 24 20:45:06 UTC 2013

Author: dannf
Date: Sun Feb 24 20:45:06 2013
New Revision: 19848

Log:
xen: pciback: rate limit error message from pciback_enable_msi()
(CVE-2013-0231)

Added:
   dists/squeeze-security/linux-2.6/debian/patches/features/all/xen/xsa43-classic.patch
   dists/squeeze-security/linux-2.6/debian/patches/series/48squeeze1-extra
Modified:
   dists/squeeze-security/linux-2.6/debian/changelog

Modified: dists/squeeze-security/linux-2.6/debian/changelog
==============================================================================

--- dists/squeeze-security/linux-2.6/debian/changelog	Sun Feb 24 18:52:23 2013	(r19847)
+++ dists/squeeze-security/linux-2.6/debian/changelog	Sun Feb 24 20:45:06 2013	(r19848)
@@ -1,6 +1,8 @@
 linux-2.6 (2.6.32-48squeeze1) UNRELEASED; urgency=high
 
   * ptrace: Fix race condition allowing kernel stack corruption (CVE-2013-0871)
+  * xen: pciback: rate limit error message from pciback_enable_msi()
+    (CVE-2013-0231)
 
  -- dann frazier <dannf at dannf.org>  Mon, 18 Feb 2013 16:14:40 -0700
 

Added: dists/squeeze-security/linux-2.6/debian/patches/features/all/xen/xsa43-classic.patch
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ dists/squeeze-security/linux-2.6/debian/patches/features/all/xen/xsa43-classic.patch	Sun Feb 24 20:45:06 2013	(r19848)
@@ -0,0 +1,35 @@
+pciback: rate limit error message from pciback_enable_msi()
+
+... as being guest triggerable (e.g. by invoking XEN_PCI_OP_enable_msi
+on a device not being MSI capable).
+
+This is CVE-2013-0231 / XSA-43.
+
+Signed-off-by: Jan Beulich <jbeulich at suse.com>
+[dannf: backported to Debian's 2.6.32]
+
+diff -urpN a/drivers/xen/pciback/conf_space_capability_msi.c b/drivers/xen/pciback/conf_space_capability_msi.c
+--- a/drivers/xen/pciback/conf_space_capability_msi.c	2013-02-24 13:43:07.628230496 -0500
++++ b/drivers/xen/pciback/conf_space_capability_msi.c	2013-02-24 14:35:30.470438381 -0500
+@@ -13,8 +13,7 @@ int pciback_enable_msi(struct pciback_de
+ 		struct pci_dev *dev, struct xen_pci_op *op)
+ {
+ 	struct pciback_dev_data *dev_data;
+-	int otherend = pdev->xdev->otherend_id;
+-	int status;
++	int status = pci_enable_msi(dev);
+ 
+  	if (unlikely(verbose_request))
+ 		printk(KERN_DEBUG "pciback: %s: enable MSI\n", pci_name(dev));
+@@ -22,8 +21,9 @@ int pciback_enable_msi(struct pciback_de
+ 	status = pci_enable_msi(dev);
+ 
+ 	if (status) {
+-		printk(KERN_ERR "error enable msi for guest %x status %x\n",
+-			otherend, status);
++		if (printk_ratelimit())
++			printk("error enabling MSI for guest %u status %d\n",
++			       pdev->xdev->otherend_id, status);
+ 		op->value = 0;
+ 		return XEN_PCI_ERR_op_failed;
+ 	}

Added: dists/squeeze-security/linux-2.6/debian/patches/series/48squeeze1-extra
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ dists/squeeze-security/linux-2.6/debian/patches/series/48squeeze1-extra	Sun Feb 24 20:45:06 2013	(r19848)
@@ -0,0 +1 @@
++ features/all/xen/xsa43-classic.patch featureset=xen

