[Pkg-xen-changes] r597 - in branches/etch/xen-3.0/debian: . patches

[Bastian Blank]

Author: waldi
Date: Sat Jul 12 10:07:55 2008
New Revision: 597

Log:
Add NMU patch for 3.0.3-0-4.


Added:
   branches/etch/xen-3.0/debian/patches/CVE-2007-3919.dpatch   (contents, props changed)
Modified:
   branches/etch/xen-3.0/debian/changelog

Modified: branches/etch/xen-3.0/debian/changelog
==============================================================================
--- branches/etch/xen-3.0/debian/changelog	(original)
+++ branches/etch/xen-3.0/debian/changelog	Sat Jul 12 10:07:55 2008
@@ -1,3 +1,11 @@
+xen-3.0 (3.0.3-0-4) stable-security; urgency=low
+
+  * Non-maintainer upload by The Security Team.
+  * Avoid the use of an insecure temporary file for communication between
+    xenmon.py & xenbaked.  [CVE-2007-3919]
+
+ -- Steve Kemp <skx at debian.org>  Mon, 22 Oct 2007 22:27:06 +0000
+
 xen-3.0 (3.0.3-0-3) stable-security; urgency=low
 
   * Use linux-support-2.6.18-5.

Added: branches/etch/xen-3.0/debian/patches/CVE-2007-3919.dpatch
==============================================================================
--- (empty file)
+++ branches/etch/xen-3.0/debian/patches/CVE-2007-3919.dpatch	Sat Jul 12 10:07:55 2008
@@ -0,0 +1,25 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+
+ at DPATCH@
+--- xen-3.0-3.0.3-0.orig/tools/xenmon/xenbaked.c
++++ xen-3.0-3.0.3-0/tools/xenmon/xenbaked.c
+@@ -593,7 +593,7 @@
+     return 0;
+ }
+ 
+-#define SHARED_MEM_FILE "/tmp/xenq-shm"
++#define SHARED_MEM_FILE "/var/run/xenmon"
+ void alloc_qos_data(int ncpu)
+ {
+     int i, n, pgsize, off=0;
+--- xen-3.0-3.0.3-0.orig/tools/xenmon/xenmon.py
++++ xen-3.0-3.0.3-0/tools/xenmon/xenmon.py
+@@ -46,7 +46,7 @@
+ QOS_DATA_SIZE = struct.calcsize(ST_QDATA)*NSAMPLES + struct.calcsize(ST_DOM_INFO)*NDOMAINS + struct.calcsize("4i")
+ 
+ # location of mmaped file, hard coded right now
+-SHM_FILE = "/tmp/xenq-shm"
++SHM_FILE = "/var/run/xenmon"
+ 
+ # format strings
+ TOTALS = 15*' ' + "%6.2f%%" + 35*' ' + "%6.2f%%"