FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Ubuntu > Ubuntu Kernel Team

 
 
LinkBack Thread Tools
 
Old 11-21-2011, 06:57 PM
Tim Gardner
 
Default APPLIED: xfs_readlink memory corruption

On 11/21/2011 09:50 AM, Andy Whitcroft wrote:

CVE-2011-4077
A flaw was found in the way Linux kernel's XFS filesystem
implementation handled links with pathname larger than
MAXPATHLEN. When CONFIG_XFS_DEBUG configuration option was not
enabled when compiling Linux kernel, an attacker able to mount
malicious XFS image could use this flaw to crash the system,
or potentially, elevate his privileges on that system.

The fix for this issue has hit precise via upstream. Following this email
are 4 patches. The first for hardy; the second for lucid, lucid/fsl-imx51,
maverick, and maverick/ti-omap4; the third for natty and natty/ti-omap3;
and the last for oneiric. All of these are trivial backports from
the upstream commit differing only in how the errors are reported and
in context.

Proposing for hardy, lucid, lucid/fsl-imx51, maverick, maverick/ti-omap4,
natty, natty/ti-omap3, and oneiric.

-apw




--
Tim Gardner tim.gardner@canonical.com

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 

Thread Tools




All times are GMT. The time now is 07:50 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org