Re: Linux 2.6.22.18

view
thread

!MAILaRCHIVE_VOTE_RePLACE

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Greg KH <gregkh@...>

To: Florian Weimer <fw@...>

Cc: Matthew Keenan <matt@...>, <linux-kernel@...>, Andrew Morton <akpm@...>, <torvalds@...>, <stable@...>

Subject: Re: Linux 2.6.22.18

Date: Tuesday, February 12, 2008 - 1:50 pm

On Tue, Feb 12, 2008 at 06:48:42PM +0100, Florian Weimer wrote:
quoted text> * Greg KH:
> 
> > the logic is a little different in 2.6.22 and earlier in regards to this
> > area of code.  This way we are safer.
> 
> Your patch doesn't include the CVE-2006-0010 hunk.  Is this because
> get_user() implies an access_ok() check (while __copy_from_user()
> obviously does not)?

Yes, that is exactly why.  CVE-2006-0010 and -0009 are not applicable to
kernels prior to 2.6.23.

thanks,

greg k-h
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Linux 2.6.22.18, Greg Kroah-Hartman, (Mon Feb 11, 3:43 am)

Re: Linux 2.6.22.18, Greg Kroah-Hartman, (Mon Feb 11, 3:43 am)

Re: Linux 2.6.22.18, Matthew Keenan, (Mon Feb 11, 7:31 am)

Re: Linux 2.6.22.18, Linus Torvalds, (Mon Feb 11, 12:32 pm)

Re: Linux 2.6.22.18, Greg KH, (Mon Feb 11, 11:45 am)

Re: Linux 2.6.22.18, Florian Weimer, (Tue Feb 12, 1:48 pm)

Re: Linux 2.6.22.18, Greg KH, (Tue Feb 12, 1:50 pm)

Navigation

Popular discussions


linux-kernel:
Avi Kivity	[PATCH 08/54] KVM: Portability: Move unalias_gfn to arch dependent file
Jon Smirl	463 kernel developers missing!
debian developer	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Greg KH	[GIT PATCH] driver core patches against 2.6.24
git:

linux-netdev:
Antonio Almeida	HTB accuracy for high speed
Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
Arjan van de Ven	Re: [GIT]: Networking
Jarek Poplawski	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
openbsd-misc:

Colocation donated by:

Online users

Syndicate