rpms/kernel/F-11 netlink-fix-typo-in-initialization.patch, NONE, 1.1 kernel.spec, 1.1765, 1.1766
Chuck Ebbert
cebbert at fedoraproject.org
Fri Oct 16 11:00:07 UTC 2009
Author: cebbert
Update of /cvs/pkgs/rpms/kernel/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv22790
Modified Files:
kernel.spec
Added Files:
netlink-fix-typo-in-initialization.patch
Log Message:
Fix uninitialized data leak in netlink (CVE-2009-3612)
netlink-fix-typo-in-initialization.patch:
cls_api.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
--- NEW FILE netlink-fix-typo-in-initialization.patch ---
From: Jiri Pirko <jpirko at redhat.com>
Date: Thu, 8 Oct 2009 08:21:46 +0000 (-0700)
Subject: netlink: fix typo in initialization
X-Git-Tag: v2.6.32-rc5~13^2~33
X-Git-Url: http://git.kernel.org/?p=linux%2Fkernel%2Fgit%2Ftorvalds%2Flinux-2.6.git;a=commitdiff_plain;h=ad61df918c44316940404891d5082c63e79c256a
netlink: fix typo in initialization
Commit 9ef1d4c7c7aca1cd436612b6ca785b726ffb8ed8 ("[NETLINK]: Missing
initializations in dumped data") introduced a typo in
initialization. This patch fixes this.
Signed-off-by: Jiri Pirko <jpirko at redhat.com>
Signed-off-by: David S. Miller <davem at davemloft.net>
---
diff --git a/net/sched/cls_api.c b/net/sched/cls_api.c
index 6a53694..7cf6c0f 100644
--- a/net/sched/cls_api.c
+++ b/net/sched/cls_api.c
@@ -350,7 +350,7 @@ static int tcf_fill_node(struct sk_buff *skb, struct tcf_proto *tp,
tcm = NLMSG_DATA(nlh);
tcm->tcm_family = AF_UNSPEC;
tcm->tcm__pad1 = 0;
- tcm->tcm__pad1 = 0;
+ tcm->tcm__pad2 = 0;
tcm->tcm_ifindex = qdisc_dev(tp->q)->ifindex;
tcm->tcm_parent = tp->classid;
tcm->tcm_info = TC_H_MAKE(tp->prio, tp->protocol);
Index: kernel.spec
===================================================================
RCS file: /cvs/pkgs/rpms/kernel/F-11/kernel.spec,v
retrieving revision 1.1765
retrieving revision 1.1766
diff -u -p -r1.1765 -r1.1766
--- kernel.spec 15 Oct 2009 12:17:21 -0000 1.1765
+++ kernel.spec 16 Oct 2009 11:00:06 -0000 1.1766
@@ -803,6 +803,9 @@ Patch15800: libata-fix-incorrect-link-on
# ax25 security fix (cve-2009-2909)
Patch15900: ax25-fix-possible-oops-in-ax25_make_new.patch
+# netlink security fix (CVE-2009-3612)
+Patch16000: netlink-fix-typo-in-initialization.patch
+
%endif
BuildRoot: %{_tmppath}/kernel-%{KVERREL}-root
@@ -1503,6 +1506,9 @@ ApplyPatch libata-fix-incorrect-link-onl
# ax25 security fix (cve-2009-2909)
ApplyPatch ax25-fix-possible-oops-in-ax25_make_new.patch
+# netlink security fix (CVE-2009-3612)
+ApplyPatch netlink-fix-typo-in-initialization.patch
+
# END OF PATCH APPLICATIONS
%endif
@@ -2091,6 +2097,9 @@ fi
# and build.
%changelog
+* Fri Oct 16 2009 Chuck Ebbert <cebbert at redhat.com> 2.6.30.9-87
+- Fix uninitialized data leak in netlink (CVE-2009-3612)
+
* Thu Oct 15 2009 Chuck Ebbert <cebbert at redhat.com> 2.6.30.9-86
- AX.25 security fix (CVE-2009-2909)
More information about the fedora-extras-commits
mailing list