oss-sec mailing list archives
CVE request: kernel: splice local denial of service
From: Marcus Meissner <meissner () suse de>
Date: Fri, 29 May 2009 17:20:29 +0200
Hi oss-sec, CVE Request for a local denial kernel issue.... The splice(2) syscall has received some fixes against local deadlocks. 2.6.30-rc3 is fixed, 2.6.27.24 is fixed, and 2.6.29.4 is fixed. The inode double locking code was introduced in 2.6.19, so I guess earlier kernel versions are not affected. (Miklos?) Its as far as I understand this set of changes in mainline: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=7bfac9ecf0585962fe13584f5cf526d8c8e76f17 (this one with description of issue) http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=b3c2d2ddd63944ef2a1e4a43077b602288107e01 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=2933970b960223076d6affcf7a77e2bc546b8102 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=eb443e5a25d43996deb62b9bcee1a4ce5dea2ead http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=328eaaba4e41a04c1dc4679d65bea3fee4349d86 Ciao, Marcus
Current thread:
- CVE request: kernel: splice local denial of service Marcus Meissner (May 29)
- Re: CVE request: kernel: splice local denial of service Jon Oberheide (May 30)
- Re: CVE request: kernel: splice local denial of service Miklos Szeredi (Jun 02)
- Re: CVE request: kernel: splice local denial of service Eugene Teo (Jun 02)
- Re: CVE request: kernel: splice local denial of service Steven M. Christey (Jun 06)
- Re: CVE request: kernel: splice local denial of service Miklos Szeredi (Jun 02)
- Re: CVE request: kernel: splice local denial of service Jon Oberheide (May 30)