Hlavní navigace

Názor ke zprávičce Bezpečnostní chyba v jádře zatím bez opravy od Kvakor - Pokud se nemylim, je uz v dispozici verze...

  • Aktualita je stará, nové názory již nelze přidávat.
  • 11. 2. 2008 10:29

    Kvakor (neregistrovaný)
    Pokud se nemylim, je uz v dispozici verze 2.6.24.2, kde je tento changelog:

    commit c78cb439103bf7deba5feb64921398d0ff93179a
    Author: Greg Kroah-Hartman <gregkh@suse.de>
    Date: Sun Feb 10 21:51:11 2008 -0800

    Linux 2.6.24.2

    commit 1617e66d11d6621824f642728d62f242272fd063
    Author: Bastian Blank <bastian@waldi.eu.org>
    Date: Sun Feb 10 16:47:57 2008 +0200

    splice: fix user pointer access in get_iovec_page_array()

    patch 712a30e63c8066ed84385b12edbfb804f49cbc44 in mainline.

    Commit 8811930dc74a503415b35c4a79d14fb0b408a361 ("splice: missing user
    pointer access verification") added the proper access_ok() calls to
    copy_from_user_mmap_sem() which ensures we can copy the struct iovecs
    from userspace to the kernel.

    But we also must check whether we can access the actual memory region
    pointed to by the struct iovec to fix the access checks properly.

    Signed-off-by: Bastian Blank <waldi@debian.org>
    Acked-by: Oliver Pinter <oliver.pntr@gmail.com>
    Cc: Jens Axboe <jens.axboe@oracle.com>
    Cc: Andrew Morton <akpm@linux-foundation.org>
    Signed-off-by: Pekka Enberg <penberg@cs.helsinki.fi>
    Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
    Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>