rpms/kernel/F-9 linux-2.6-drm-i915-fix-ioctl-security.patch, NONE, 1.1 kernel.spec, 1.804, 1.805
Chuck Ebbert
cebbert at fedoraproject.org
Fri Oct 17 17:50:33 UTC 2008
- Previous message: rpms/kdelibs/devel import.log, NONE, 1.1 kdelibs-4.0.5-fedora-buildtype.patch, 1.2, 1.3 kdelibs-4.1.69-policykit-workaround.patch, NONE, 1.1 kdelibs-4.2.0-parallel_devel-kconfig_compiler.patch, NONE, 1.1 kdelibs-4.2.0-parallel_devel-makekdewidgets.patch, NONE, 1.1 kdelibs-4.2.0-parallel_devel.patch, NONE, 1.1 .cvsignore, 1.59, 1.60 kdelibs.spec, 1.382, 1.383 sources, 1.71, 1.72 kdelibs-4.0.2-policykit-workaround.patch, 1.1, NONE kdelibs-4.1.0-parallel_devel.patch, 1.1, NONE kdelibs-4.1.1-cmake.patch, 1.2, NONE
- Next message: [pkgdb] strigi: arbiter has requested commit
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: cebbert
Update of /cvs/pkgs/rpms/kernel/F-9
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv21196
Modified Files:
kernel.spec
Added Files:
linux-2.6-drm-i915-fix-ioctl-security.patch
Log Message:
DRM: fix ioctl security issue (CVE-2008-3831).
linux-2.6-drm-i915-fix-ioctl-security.patch:
--- NEW FILE linux-2.6-drm-i915-fix-ioctl-security.patch ---
Index: linux-2.6.26.noarch/drivers/char/drm/i915_dma.c
===================================================================
--- linux-2.6.26.noarch.orig/drivers/char/drm/i915_dma.c
+++ linux-2.6.26.noarch/drivers/char/drm/i915_dma.c
@@ -1577,7 +1577,7 @@ struct drm_ioctl_desc i915_ioctls[] = {
DRM_IOCTL_DEF(DRM_I915_GET_VBLANK_PIPE, i915_vblank_pipe_get, DRM_AUTH ),
DRM_IOCTL_DEF(DRM_I915_VBLANK_SWAP, i915_vblank_swap, DRM_AUTH),
DRM_IOCTL_DEF(DRM_I915_MMIO, i915_mmio, DRM_AUTH),
- DRM_IOCTL_DEF(DRM_I915_HWS_ADDR, i915_set_status_page, DRM_AUTH),
+ DRM_IOCTL_DEF(DRM_I915_HWS_ADDR, i915_set_status_page, DRM_AUTH|DRM_MASTER|DRM_ROOT_ONLY),
DRM_IOCTL_DEF(DRM_I915_EXECBUFFER, i915_execbuffer, DRM_AUTH),
};
Index: kernel.spec
===================================================================
RCS file: /cvs/pkgs/rpms/kernel/F-9/kernel.spec,v
retrieving revision 1.804
retrieving revision 1.805
diff -u -r1.804 -r1.805
--- kernel.spec 16 Oct 2008 17:55:58 -0000 1.804
+++ kernel.spec 17 Oct 2008 17:50:02 -0000 1.805
@@ -697,6 +697,7 @@
# nouveau + drm fixes
Patch1801: drm-fedora9-rollup.patch
+Patch1802: linux-2.6-drm-i915-fix-ioctl-security.patch
# kludge to make ich9 e1000 work
Patch2000: linux-2.6-e1000-ich9.patch
@@ -1324,6 +1325,7 @@
# Nouveau DRM + drm fixes
ApplyPatch drm-fedora9-rollup.patch
+ApplyPatch linux-2.6-drm-i915-fix-ioctl-security.patch
# ext4dev stable patch queue, slated for 2.6.25
#ApplyPatch linux-2.6-ext4-stable-queue.patch
@@ -1948,6 +1950,9 @@
%kernel_variant_files -a /%{image_install_path}/xen*-%{KVERREL}.xen -e /etc/ld.so.conf.d/kernelcap-%{KVERREL}.xen.conf %{with_xen} xen
%changelog
+* Fri Oct 17 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.26.6-78
+- DRM: fix ioctl security issue (CVE-2008-3831).
+
* Thu Oct 16 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.26.6-77
- Fix RTC on systems that don't describe it in PnP (#451188)
- Previous message: rpms/kdelibs/devel import.log, NONE, 1.1 kdelibs-4.0.5-fedora-buildtype.patch, 1.2, 1.3 kdelibs-4.1.69-policykit-workaround.patch, NONE, 1.1 kdelibs-4.2.0-parallel_devel-kconfig_compiler.patch, NONE, 1.1 kdelibs-4.2.0-parallel_devel-makekdewidgets.patch, NONE, 1.1 kdelibs-4.2.0-parallel_devel.patch, NONE, 1.1 .cvsignore, 1.59, 1.60 kdelibs.spec, 1.382, 1.383 sources, 1.71, 1.72 kdelibs-4.0.2-policykit-workaround.patch, 1.1, NONE kdelibs-4.1.0-parallel_devel.patch, 1.1, NONE kdelibs-4.1.1-cmake.patch, 1.2, NONE
- Next message: [pkgdb] strigi: arbiter has requested commit
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the scm-commits
mailing list