[kernel] r14576 - in dists/etch-security/linux-2.6/debian: . patches/bugfix/all patches/series

Dann Frazier dannf at alioth.debian.org
Thu Nov 5 03:21:12 UTC 2009 

Author: dannf
Date: Thu Nov  5 03:21:09 2009
New Revision: 14576

Log:
netlink: fix typo in initialization (CVE-2009-3612)

Added:
   dists/etch-security/linux-2.6/debian/patches/bugfix/all/netlink-fix-typo-in-initialization.patch
      - copied unchanged from r14564, dists/etch-security/linux-2.6.24/debian/patches/bugfix/all/netlink-fix-typo-in-initialization.patch
Modified:
   dists/etch-security/linux-2.6/debian/changelog
   dists/etch-security/linux-2.6/debian/patches/series/26etch1

Modified: dists/etch-security/linux-2.6/debian/changelog
==============================================================================
--- dists/etch-security/linux-2.6/debian/changelog	Thu Nov  5 03:13:53 2009	(r14575)
+++ dists/etch-security/linux-2.6/debian/changelog	Thu Nov  5 03:21:09 2009	(r14576)
@@ -10,6 +10,7 @@
   * NFSv4: fix open-create permissions, move iattr & verf attributes of
     struct nfsd4_open out of the union (CVE-2009-3286)
   * fs: pipe.c null pointer dereference (CVE-2009-3547)
+  * netlink: fix typo in initialization (CVE-2009-3612)
 
  -- dann frazier <dannf at debian.org>  Tue, 15 Sep 2009 22:19:58 -0600
 

Copied: dists/etch-security/linux-2.6/debian/patches/bugfix/all/netlink-fix-typo-in-initialization.patch (from r14564, dists/etch-security/linux-2.6.24/debian/patches/bugfix/all/netlink-fix-typo-in-initialization.patch)
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ dists/etch-security/linux-2.6/debian/patches/bugfix/all/netlink-fix-typo-in-initialization.patch	Thu Nov  5 03:21:09 2009	(r14576, copy of r14564, dists/etch-security/linux-2.6.24/debian/patches/bugfix/all/netlink-fix-typo-in-initialization.patch)
@@ -0,0 +1,27 @@
+commit ad61df918c44316940404891d5082c63e79c256a
+Author: Jiri Pirko <jpirko at redhat.com>
+Date:   Thu Oct 8 01:21:46 2009 -0700
+
+    netlink: fix typo in initialization
+    
+    Commit 9ef1d4c7c7aca1cd436612b6ca785b726ffb8ed8 ("[NETLINK]: Missing
+    initializations in dumped data") introduced a typo in
+    initialization. This patch fixes this.
+    
+    Signed-off-by: Jiri Pirko <jpirko at redhat.com>
+    Signed-off-by: David S. Miller <davem at davemloft.net>
+
+Adjusted to apply to Debian's 2.6.26 by dann frazier <dannf at debian.org>
+
+diff -urpN linux-source-2.6.26.orig/net/sched/cls_api.c linux-source-2.6.26/net/sched/cls_api.c
+--- linux-source-2.6.26.orig/net/sched/cls_api.c	2008-07-13 15:51:29.000000000 -0600
++++ linux-source-2.6.26/net/sched/cls_api.c	2009-10-27 21:47:00.000000000 -0600
+@@ -333,7 +333,7 @@ static int tcf_fill_node(struct sk_buff 
+ 	tcm = NLMSG_DATA(nlh);
+ 	tcm->tcm_family = AF_UNSPEC;
+ 	tcm->tcm__pad1 = 0;
+-	tcm->tcm__pad1 = 0;
++	tcm->tcm__pad2 = 0;
+ 	tcm->tcm_ifindex = tp->q->dev->ifindex;
+ 	tcm->tcm_parent = tp->classid;
+ 	tcm->tcm_info = TC_H_MAKE(tp->prio, tp->protocol);

Modified: dists/etch-security/linux-2.6/debian/patches/series/26etch1
==============================================================================
--- dists/etch-security/linux-2.6/debian/patches/series/26etch1	Thu Nov  5 03:13:53 2009	(r14575)
+++ dists/etch-security/linux-2.6/debian/patches/series/26etch1	Thu Nov  5 03:21:09 2009	(r14576)
@@ -11,3 +11,4 @@
 + bugfix/all/nfsd4-fix-open-create-permissions.patch
 + bugfix/all/nfsd4-de-union-iattr-and-verf.patch
 + bugfix/all/fs-pipe-null-pointer-dereference.patch
++ bugfix/all/netlink-fix-typo-in-initialization.patch

More information about the Kernel-svn-changes mailing list