ecryptfs team mailing list archive
-
ecryptfs team
-
Mailing list archive
-
Message #01879
[Bug 732628] Re: TOCTOU in mount.ecryptfs_private
This bug was fixed in the package linux-ti-omap4 - 2.6.38-1209.15
---------------
linux-ti-omap4 (2.6.38-1209.15) natty-proposed; urgency=low
* Release tracking bug
- LP: #837761
[ Paolo Pisati ]
* [Config] Turn on CONFIG_USER_NS and DEVPTS_MULTIPLE_INSTANCES.
- LP: #787749
[ Tim Gardner ]
* [Config] Add enic/fnic to nic-modules udeb, CVE-2011-1020
- LP: #801610
[ Upstream Kernel Changes ]
* mpt2sas: prevent heap overflows and unchecked reads
- LP: #780546
* agp: fix arbitrary kernel memory writes
- LP: #775809
* can: add missing socket check in can/raw release
- LP: #780546
* agp: fix OOM and buffer overflow
- LP: #775809
* bonding: Incorrect TX queue offset, CVE-2011-1581
- LP: #792312
- CVE-2011-1581
* fs/partitions/efi.c: corrupted GUID partition tables can cause kernel
oops
- LP: #795418
- CVE-2011-1577
* can: Add missing socket check in can/bcm release.
- LP: #796502
- CVE-2011-1598
* USB: ehci: remove structure packing from ehci_def
- LP: #791552
* taskstats: don't allow duplicate entries in listener mode,
CVE-2011-2484
- LP: #806390
- CVE-2011-2484
* ext4: init timer earlier to avoid a kernel panic in __save_error_info,
CVE-2011-2493
- LP: #806929
- CVE-2011-2493
* dccp: handle invalid feature options length, CVE-2011-1770
- LP: #806375
- CVE-2011-1770
* pagemap: close races with suid execve, CVE-2011-1020
- LP: #813026
- CVE-2011-1020
* report errors in /proc/*/*map* sanely, CVE-2011-1020
- LP: #813026
- CVE-2011-1020
* close race in /proc/*/environ, CVE-2011-1020
- LP: #813026
- CVE-2011-1020
* auxv: require the target to be tracable (or yourself), CVE-2011-1020
- LP: #813026
- CVE-2011-1020
* deal with races in /proc/*/{syscall, stack, personality}, CVE-2011-1020
- LP: #813026
- CVE-2011-1020
* rose: Add length checks to CALL_REQUEST parsing, CVE-2011-1493
- LP: #816550
- CVE-2011-1493
* GFS2: make sure fallocate bytes is a multiple of blksize, CVE-2011-2689
- LP: #819572
- CVE-2011-2689
* Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace.
- LP: #819569
- CVE-2011-2492
* Add mount option to check uid of device being mounted = expect uid,
CVE-2011-1833
- LP: #732628
- CVE-2011-1833
* ipv6: make fragment identifications less predictable, CVE-2011-2699
- LP: #827685
- CVE-2011-2699
* perf: Fix software event overflow, CVE-2011-2918
- LP: #834121
- CVE-2011-2918
* proc: fix oops on invalid /proc/<pid>/maps access, CVE-2011-1020
- LP: #813026
- CVE-2011-1020
linux-ti-omap4 (2.6.38-1209.13) natty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #772381
[ Brad Figg ]
* Ubuntu-2.6.38-9.43
[ Bryan Wu ]
* merge Ubuntu-2.6.38-9.43
* cherry-pick 6 patches from u2 of 'for-ubuntu' branch
* [Config] Sync up configs for 2.6.38.4
[ Herton Ronaldo Krzesinski ]
* SAUCE: Revert "x86, hibernate: Initialize mmu_cr4_features during boot"
- LP: #764758
[ Leann Ogasawara ]
* [Config] updateconfigs for 2.6.38.4
[ Paolo Pisati ]
* [Config] s/USB_MUSB_TUSB6010/USB_MUSB_OMAP2PLUS/ on omap3 to get musb
- LP: #759913
[ Serge E. Hallyn ]
* SAUCE: kvm: fix push of wrong eip when doing softint
- LP: #747090
[ Tim Gardner ]
* [Config] Add cachefiles.ko to virtual flavour
- LP: #770430
[ Upstream Kernel Changes ]
* Revert "net/sunrpc: Use static const char arrays"
- LP: #761134
* Revert "x86: Cleanup highmap after brk is concluded"
- LP: #761134
* ALSA: hda - Fix SPDIF out regression on ALC889
- LP: #761134
* ALSA: Fix yet another race in disconnection
- LP: #761134
* ALSA: vmalloc buffers should use normal mmap
- LP: #761134
* perf: Better fit max unprivileged mlock pages for tools needs
- LP: #761134
* myri10ge: fix rmmod crash
- LP: #761134
* cciss: fix lost command issue
- LP: #761134
* ath9k: Fix kernel panic in AR2427
- LP: #761134
* sound/oss/opl3: validate voice and channel indexes
- LP: #761134
* mac80211: initialize sta->last_rx in sta_info_alloc
- LP: #761134
* ses: show devices for enclosures with no page 7
- LP: #761134
* ses: Avoid kernel panic when lun 0 is not mapped
- LP: #761134
* PCI/ACPI: Report ASPM support to BIOS if not disabled from command line
- LP: #761134
* eCryptfs: Unlock page in write_begin error path
- LP: #761134
* eCryptfs: ecryptfs_keyring_auth_tok_for_sig() bug fix
- LP: #761134
* crypto: aesni-intel - fixed problem with packets that are not multiple
of 64bytes
- LP: #761134
* staging: usbip: bugfixes related to kthread conversion
- LP: #761134
* staging: usbip: bugfix add number of packets for isochronous frames
- LP: #761134
* staging: usbip: bugfix for isochronous packets and optimization
- LP: #761134
* staging: hv: use sync_bitops when interacting with the hypervisor
- LP: #761134
* staging: hv: Fix GARP not sent after Quick Migration
- LP: #761134
* xfs: register the inode cache shrinker before quotachecks
- LP: #761134
* amd64_edac: Fix potential memleak
- LP: #761134
* watchdog: s3c2410_wdt.c: Convert release_resource to
release_region/release_mem_region
- LP: #761134
* watchdog: Convert release_resource to release_region/release_mem_region
- LP: #761134
* irda: validate peer name and attribute lengths
- LP: #761134
* irda: prevent heap corruption on invalid nickname
- LP: #761134
* powerpc: Fix accounting of softirq time when idle
- LP: #761134
* nilfs2: fix data loss in mmap page write for hole blocks
- LP: #761134
* ASoC: Explicitly say registerless widgets have no register
- LP: #761134
* ASoC: imx: set watermarks for mx2-dma
- LP: #761134
* ASoC: imx: fix burstsize for DMA
- LP: #761134
* ASoC: Fix CODEC device name for Corgi
- LP: #761134
* ALSA: ens1371: fix Creative Ectiva support
- LP: #761134
* ALSA: hda - HDMI: Fix MCP7x audio infoframe checksums
- LP: #761134
* ALSA: HDA: Fix single internal mic on ALC275 (Sony Vaio VPCSB1C5E)
- LP: #752792, #761134
* net: fix ethtool->set_flags not intended -EINVAL return value
- LP: #761134
* drm/radeon/kms: add some new ontario pci ids
- LP: #761134
* drm/radeon/kms: add some sanity checks to obj info record parsingi (v2)
- LP: #761134
* inotify: fix double free/corruption of stuct user
- LP: #761134
* HID: hid-magicmouse: Increase evdev buffer size
- LP: #761134
* perf: Fix task_struct reference leak
- LP: #761134
* perf: Rebase max unprivileged mlock threshold on top of page size
- LP: #761134
* ROSE: prevent heap corruption with bad facilities
- LP: #761134
* Btrfs: Fix uninitialized root flags for subvolumes
- LP: #761134
* x86, mtrr, pat: Fix one cpu getting out of sync during resume
- LP: #761134
* Input: synaptics - fix crash in synaptics_module_init()
- LP: #761134
* ath9k: fix a chip wakeup related crash in ath9k_start
- LP: #761134
* mac80211: fix a crash in minstrel_ht in HT mode with no supported MCS
rates
- LP: #761134
* staging: IIO: IMU: ADIS16400: Fix up SPI messages cs_change behavior
- LP: #761134
* staging: IIO: IMU: ADIS16400: Add delay after self test
- LP: #761134
* staging: IIO: IMU: ADIS16400: Fix addresses of GYRO and ACCEL
calibration offset
- LP: #761134
* staging: IIO: IMU: ADIS16400: Make sure only enabled scan_elements are
pushed into the ring
- LP: #761134
* UBIFS: do not read flash unnecessarily
- LP: #761134
* UBIFS: fix oops on error path in read_pnode
- LP: #761134
* UBIFS: fix debugging failure in dbg_check_space_info
- LP: #761134
* quota: Don't write quota info in dquot_commit()
- LP: #761134
* mm: avoid wrapping vm_pgoff in mremap()
- LP: #761134
* iwlwifi: accept EEPROM version 0x423 for iwl6000
- LP: #761134
* p54usb: IDs for two new devices
- LP: #761134
* rt2x00: Fix radio off hang issue for PCIE interface
- LP: #662288, #761134
* rt2x00: fix cancelling uninitialized work
- LP: #761134
* wl12xx: fix potential buffer overflow in testmode nvs push
- LP: #761134
* media/radio/wl1273: fix build errors
- LP: #761134
* b43: allocate receive buffers big enough for max frame len + offset
- LP: #761134
* Bluetooth: sco: fix information leak to userspace
- LP: #761134
* bridge: netfilter: fix information leak
- LP: #761134
* Bluetooth: bnep: fix buffer overflow
- LP: #761134
* Bluetooth: add support for Apple MacBook Pro 8,2
- LP: #761134
* Treat writes as new when holes span across page boundaries
- LP: #761134
* char/tpm: Fix unitialized usage of data buffer
- LP: #761134
* netfilter: ip_tables: fix infoleak to userspace
- LP: #761134
* netfilter: xtables: fix reentrancy
- LP: #761134
* netfilter: arp_tables: fix infoleak to userspace
- LP: #761134
* netfilter: ipt_CLUSTERIP: fix buffer overflow
- LP: #761134
* ipv6: netfilter: ip6_tables: fix infoleak to userspace
- LP: #761134
* scsi_transport_iscsi: make priv_sess file writeable only by root
- LP: #761134
* mfd: ab8500: world-writable debugfs register-* files
- LP: #761134
* mfd: ab3500: world-writable debugfs register-* files
- LP: #761134
* mfd: ab3100: world-writable debugfs *_priv files
- LP: #761134
* drivers/rtc/rtc-ds1511.c: world-writable sysfs nvram file
- LP: #761134
* drivers/misc/ep93xx_pwm.c: world-writable sysfs files
- LP: #761134
* drivers/leds/leds-lp5523.c: world-writable engine* sysfs files
- LP: #761134
* drivers/leds/leds-lp5521.c: world-writable sysfs engine* files
- LP: #761134
* econet: 4 byte infoleak to the network
- LP: #761134
* netfilter: h323: bug in parsing of ASN1 SEQOF field
- LP: #761134
* sound/oss: remove offset from load_patch callbacks
- LP: #761134
* drivers/media/video/tlg2300/pd-video.c: Remove second mutex_unlock in
pd_vidioc_s_fmt
- LP: #761134
* acer-wmi: does not set persistence state by rfkill_init_sw_state
- LP: #761134
* Squashfs: Use vmalloc rather than kmalloc for zlib workspace
- LP: #761134
* Squashfs: handle corruption of directory structure
- LP: #761134
* atm/solos-pci: Don't include frame pseudo-header on transmit hex-dump
- LP: #761134
* atm/solos-pci: Don't flap VCs when carrier state changes
- LP: #761134
* ext4: fix a double free in ext4_register_li_request
- LP: #761134
* ext4: fix credits computing for indirect mapped files
- LP: #761134
* nfsd: fix auth_domain reference leak on nlm operations
- LP: #761134
* nfsd4: fix oops on lock failure
- LP: #761134
* Linux 2.6.38.3
- LP: #761134
* vm: fix vm_pgoff wrap in stack expansion
- LP: #769042
* drm/radeon/kms: pll tweaks for rv6xx
- LP: #769042
* drm/radeon/kms: fix suspend on rv530 asics
- LP: #769042
* cifs: always do is_path_accessible check in cifs_mount
- LP: #769042
* cifs: check for private_data before trying to put it
- LP: #769042
* cifs: set ra_pages in backing_dev_info
- LP: #769042
* cifs: wrap received signature check in srv_mutex
- LP: #769042
* video: sn9c102: world-wirtable sysfs files
- LP: #769042
* UBIFS: restrict world-writable debugfs files
- LP: #769042
* ALSA: hda - Fix pin-config of Gigabyte mobo
- LP: #769042
* NET: cdc-phonet, handle empty phonet header
- LP: #769042
* x86: Fix a bogus unwind annotation in lib/semaphore_32.S
- LP: #769042
* tioca: Fix assignment from incompatible pointer warnings
- LP: #769042
* mca.c: Fix cast from integer to pointer warning
- LP: #769042
* vm: fix mlock() on stack guard page
- LP: #769042
* UBIFS: fix assertion warnings
- LP: #769042
* perf: Fix task context scheduling
- LP: #769042
* bridge: Fix possibly wrong MLD queries' ethernet source address
- LP: #769042
* fib: add rtnl locking in ip_fib_net_exit
- LP: #769042
* gianfar: Fall back to software tcp/udp checksum on older controllers
- LP: #769042
* l2tp: fix possible oops on l2tp_eth module unload
- LP: #769042
* net ipv6: Fix duplicate /proc/sys/net/ipv6/neigh directory entries.
- LP: #769042
* net_sched: fix ip_tos2prio
- LP: #769042
* pppoe: drop PPPOX_ZOMBIEs in pppoe_flush_dev
- LP: #769042
* sctp: Pass __GFP_NOWARN to hash table allocation attempts.
- LP: #769042
* tcp: avoid cwnd moderation in undo
- LP: #769042
* xfrm: Refcount destination entry on xfrm_lookup
- LP: #769042
* vlan: should take into account needed_headroom
- LP: #769042
* bridge: Reset IPCB when entering IP stack on NF_FORWARD
- LP: #769042
* sparc: Fix .size directive for do_int_load
- LP: #769042
* sparc32: Fix might-be-used-uninitialized warning in do_sparc_fault().
- LP: #769042
* sparc32: Pass task_struct to schedule_tail() in ret_from_fork
- LP: #769042
* sparc64: Fix build errors with gcc-4.6.0
- LP: #769042
* futex: Set FLAGS_HAS_TIMEOUT during futex_wait restart setup
- LP: #769042
* kstrto*: converting strings to integers done (hopefully) right
- LP: #769042
* mm/thp: use conventional format for boolean attributes
- LP: #769042
* ramfs: fix memleak on no-mmu arch
- LP: #769042
* oom-kill: remove boost_dying_task_prio()
- LP: #769042
* MAINTAINERS: update STABLE BRANCH info
- LP: #769042
* UBIFS: fix oops when R/O file-system is fsync'ed
- LP: #769042
* x86, AMD: Set ARAT feature on AMD processors
- LP: #769042
* x86, amd: Disable GartTlbWlkErr when BIOS forgets it
- LP: #769042
* vfs: Fix absolute RCU path walk failures due to uninitialized seq
number
- LP: #769042
* ARM: 6864/1: hw_breakpoint: clear DBGVCR out of reset
- LP: #769042
* i2c-algo-bit: Call pre/post_xfer for bit_test
- LP: #769042
* RTC: add missing "return 0" in new alarm func for rtc-bfin.c
- LP: #769042
* sched: Fix erroneous all_pinned logic
- LP: #769042
* vmscan: all_unreclaimable() use zone->all_unreclaimable as a name
- LP: #769042
* brk: COMPAT_BRK: fix detection of randomized brk
- LP: #769042
* usb: musb: temporarily make it bool
- LP: #769042
* USB: ftdi_sio: Added IDs for CTI USB Serial Devices
- LP: #769042
* USB: ftdi_sio: add PID for OCT DK201 docking station
- LP: #769042
* USB: ftdi_sio: add ids for Hameg HO720 and HO730
- LP: #769042
* USB: option: Added support for Samsung GT-B3730/GT-B3710 LTE USB modem.
- LP: #769042
* next_pidmap: fix overflow condition
- LP: #769042
* proc: do proper range check on readdir offset
- LP: #769042
* powerpc: Fix oops if scan_dispatch_log is called too early
- LP: #769042
* powerpc/perf_event: Skip updating kernel counters if register value
shrinks
- LP: #769042
* usb: Fix qcserial memory leak on rmmod
- LP: #769042
* usb: qcserial avoid pointing to freed memory
- LP: #769042
* usb: qcserial add missing errorpath kfrees
- LP: #769042
* USB: EHCI: unlink unused QHs when the controller is stopped
- LP: #769042
* USB: fix formatting of SuperSpeed endpoints in /proc/bus/usb/devices
- LP: #769042
* USB: xhci - fix unsafe macro definitions
- LP: #769042
* USB: xhci - fix math in xhci_get_endpoint_interval()
- LP: #769042
* USB: xhci - also free streams when resetting devices
- LP: #769042
* USB: Fix unplug of device with active streams
- LP: #769042
* radeon: Fix KMS CP writeback on big endian machines.
- LP: #769042
* Bluetooth: Fix HCI_RESET command synchronization
- LP: #700292, #769042
* perf tool: Fix gcc 4.6.0 issues
- LP: #769042
* bridge: reset IPCB in br_parse_ip_options
- LP: #769042
* ip: ip_options_compile() resilient to NULL skb route
- LP: #769042
* Linux 2.6.38.4
- LP: #769042
* (pre stable) ath9k_hw: partially revert "fix dma descriptor rx error
bit parsing"
- LP: #735171
* fs/partitions/ldm.c: fix oops caused by corrupted partition table,
CVE-2011-1017
- LP: #771382
- CVE-2011-1017
* (pre-stable) drm/i915: Sanitize the output registers after resume
- LP: #745304
* ARM: EXYNOS4: Register HSMMC2 before HSMMC0 on SMDKV310 board
* ARM: vexpress: add basic DT platform matching support
* ARM: vexpress: add basic dts DT source
* OMAP: Fixed gpio polarity of gpio USB-phy reset.
* arm/dt: Fix broken dtbs rule.
* arm/dt: vexpress: Update basic DT to use skeleton.dtsi file.
[ u2 of for-ubuntu ]
* arm/dt: vexpress: Update basic DT to use skeleton.dtsi file.
* arm/dt: Fix broken dtbs rule.
* OMAP: Fixed gpio polarity of gpio USB-phy reset.
* ARM: vexpress: add basic dts DT source
* ARM: vexpress: add basic DT platform matching support
* ARM: EXYNOS4: Register HSMMC2 before HSMMC0 on SMDKV310 board
[ Ubuntu: 2.6.38-9.43 ]
* Release Tracking Bug
- LP: #772096
* SAUCE: Revert "x86, hibernate: Initialize mmu_cr4_features during boot"
- LP: #764758
* [Config] updateconfigs for 2.6.38.4
* [Config] s/USB_MUSB_TUSB6010/USB_MUSB_OMAP2PLUS/ on omap3 to get musb
- LP: #759913
* SAUCE: kvm: fix push of wrong eip when doing softint
- LP: #747090
* [Config] Add cachefiles.ko to virtual flavour
- LP: #770430
* Revert "net/sunrpc: Use static const char arrays"
- LP: #761134
* Revert "x86: Cleanup highmap after brk is concluded"
- LP: #761134
* ALSA: hda - Fix SPDIF out regression on ALC889
- LP: #761134
* ALSA: Fix yet another race in disconnection
- LP: #761134
* ALSA: vmalloc buffers should use normal mmap
- LP: #761134
* perf: Better fit max unprivileged mlock pages for tools needs
- LP: #761134
* myri10ge: fix rmmod crash
- LP: #761134
* cciss: fix lost command issue
- LP: #761134
* ath9k: Fix kernel panic in AR2427
- LP: #761134
* sound/oss/opl3: validate voice and channel indexes
- LP: #761134
* mac80211: initialize sta->last_rx in sta_info_alloc
- LP: #761134
* ses: show devices for enclosures with no page 7
- LP: #761134
* ses: Avoid kernel panic when lun 0 is not mapped
- LP: #761134
* PCI/ACPI: Report ASPM support to BIOS if not disabled from command line
- LP: #761134
* eCryptfs: Unlock page in write_begin error path
- LP: #761134
* eCryptfs: ecryptfs_keyring_auth_tok_for_sig() bug fix
- LP: #761134
* crypto: aesni-intel - fixed problem with packets that are not multiple
of 64bytes
- LP: #761134
* staging: usbip: bugfixes related to kthread conversion
- LP: #761134
* staging: usbip: bugfix add number of packets for isochronous frames
- LP: #761134
* staging: usbip: bugfix for isochronous packets and optimization
- LP: #761134
* staging: hv: use sync_bitops when interacting with the hypervisor
- LP: #761134
* staging: hv: Fix GARP not sent after Quick Migration
- LP: #761134
* xfs: register the inode cache shrinker before quotachecks
- LP: #761134
* amd64_edac: Fix potential memleak
- LP: #761134
* watchdog: s3c2410_wdt.c: Convert release_resource to
release_region/release_mem_region
- LP: #761134
* watchdog: Convert release_resource to release_region/release_mem_region
- LP: #761134
* irda: validate peer name and attribute lengths
- LP: #761134
* irda: prevent heap corruption on invalid nickname
- LP: #761134
* powerpc: Fix accounting of softirq time when idle
- LP: #761134
* nilfs2: fix data loss in mmap page write for hole blocks
- LP: #761134
* ASoC: Explicitly say registerless widgets have no register
- LP: #761134
* ASoC: imx: set watermarks for mx2-dma
- LP: #761134
* ASoC: imx: fix burstsize for DMA
- LP: #761134
* ASoC: Fix CODEC device name for Corgi
- LP: #761134
* ALSA: ens1371: fix Creative Ectiva support
- LP: #761134
* ALSA: hda - HDMI: Fix MCP7x audio infoframe checksums
- LP: #761134
* ALSA: HDA: Fix single internal mic on ALC275 (Sony Vaio VPCSB1C5E)
- LP: #752792, #761134
* net: fix ethtool->set_flags not intended -EINVAL return value
- LP: #761134
* drm/radeon/kms: add some new ontario pci ids
- LP: #761134
* drm/radeon/kms: add some sanity checks to obj info record parsingi (v2)
- LP: #761134
* inotify: fix double free/corruption of stuct user
- LP: #761134
* HID: hid-magicmouse: Increase evdev buffer size
- LP: #761134
* perf: Fix task_struct reference leak
- LP: #761134
* perf: Rebase max unprivileged mlock threshold on top of page size
- LP: #761134
* ROSE: prevent heap corruption with bad facilities
- LP: #761134
* Btrfs: Fix uninitialized root flags for subvolumes
- LP: #761134
* x86, mtrr, pat: Fix one cpu getting out of sync during resume
- LP: #761134
* Input: synaptics - fix crash in synaptics_module_init()
- LP: #761134
* ath9k: fix a chip wakeup related crash in ath9k_start
- LP: #761134
* mac80211: fix a crash in minstrel_ht in HT mode with no supported MCS
rates
- LP: #761134
* staging: IIO: IMU: ADIS16400: Fix up SPI messages cs_change behavior
- LP: #761134
* staging: IIO: IMU: ADIS16400: Add delay after self test
- LP: #761134
* staging: IIO: IMU: ADIS16400: Fix addresses of GYRO and ACCEL
calibration offset
- LP: #761134
* staging: IIO: IMU: ADIS16400: Make sure only enabled scan_elements are
pushed into the ring
- LP: #761134
* UBIFS: do not read flash unnecessarily
- LP: #761134
* UBIFS: fix oops on error path in read_pnode
- LP: #761134
* UBIFS: fix debugging failure in dbg_check_space_info
- LP: #761134
* quota: Don't write quota info in dquot_commit()
- LP: #761134
* mm: avoid wrapping vm_pgoff in mremap()
- LP: #761134
* iwlwifi: accept EEPROM version 0x423 for iwl6000
- LP: #761134
* p54usb: IDs for two new devices
- LP: #761134
* rt2x00: Fix radio off hang issue for PCIE interface
- LP: #662288, #761134
* rt2x00: fix cancelling uninitialized work
- LP: #761134
* wl12xx: fix potential buffer overflow in testmode nvs push
- LP: #761134
* media/radio/wl1273: fix build errors
- LP: #761134
* b43: allocate receive buffers big enough for max frame len + offset
- LP: #761134
* Bluetooth: sco: fix information leak to userspace
- LP: #761134
* bridge: netfilter: fix information leak
- LP: #761134
* Bluetooth: bnep: fix buffer overflow
- LP: #761134
* Bluetooth: add support for Apple MacBook Pro 8,2
- LP: #761134
* Treat writes as new when holes span across page boundaries
- LP: #761134
* char/tpm: Fix unitialized usage of data buffer
- LP: #761134
* netfilter: ip_tables: fix infoleak to userspace
- LP: #761134
* netfilter: xtables: fix reentrancy
- LP: #761134
* netfilter: arp_tables: fix infoleak to userspace
- LP: #761134
* netfilter: ipt_CLUSTERIP: fix buffer overflow
- LP: #761134
* ipv6: netfilter: ip6_tables: fix infoleak to userspace
- LP: #761134
* scsi_transport_iscsi: make priv_sess file writeable only by root
- LP: #761134
* mfd: ab8500: world-writable debugfs register-* files
- LP: #761134
* mfd: ab3500: world-writable debugfs register-* files
- LP: #761134
* mfd: ab3100: world-writable debugfs *_priv files
- LP: #761134
* drivers/rtc/rtc-ds1511.c: world-writable sysfs nvram file
- LP: #761134
* drivers/misc/ep93xx_pwm.c: world-writable sysfs files
- LP: #761134
* drivers/leds/leds-lp5523.c: world-writable engine* sysfs files
- LP: #761134
* drivers/leds/leds-lp5521.c: world-writable sysfs engine* files
- LP: #761134
* econet: 4 byte infoleak to the network
- LP: #761134
* netfilter: h323: bug in parsing of ASN1 SEQOF field
- LP: #761134
* sound/oss: remove offset from load_patch callbacks
- LP: #761134
* drivers/media/video/tlg2300/pd-video.c: Remove second mutex_unlock in
pd_vidioc_s_fmt
- LP: #761134
* acer-wmi: does not set persistence state by rfkill_init_sw_state
- LP: #761134
* Squashfs: Use vmalloc rather than kmalloc for zlib workspace
- LP: #761134
* Squashfs: handle corruption of directory structure
- LP: #761134
* atm/solos-pci: Don't include frame pseudo-header on transmit hex-dump
- LP: #761134
* atm/solos-pci: Don't flap VCs when carrier state changes
- LP: #761134
* ext4: fix a double free in ext4_register_li_request
- LP: #761134
* ext4: fix credits computing for indirect mapped files
- LP: #761134
* nfsd: fix auth_domain reference leak on nlm operations
- LP: #761134
* nfsd4: fix oops on lock failure
- LP: #761134
* Linux 2.6.38.3
- LP: #761134
* vm: fix vm_pgoff wrap in stack expansion
- LP: #769042
* drm/radeon/kms: pll tweaks for rv6xx
- LP: #769042
* drm/radeon/kms: fix suspend on rv530 asics
- LP: #769042
* cifs: always do is_path_accessible check in cifs_mount
- LP: #769042
* cifs: check for private_data before trying to put it
- LP: #769042
* cifs: set ra_pages in backing_dev_info
- LP: #769042
* cifs: wrap received signature check in srv_mutex
- LP: #769042
* video: sn9c102: world-wirtable sysfs files
- LP: #769042
* UBIFS: restrict world-writable debugfs files
- LP: #769042
* ALSA: hda - Fix pin-config of Gigabyte mobo
- LP: #769042
* NET: cdc-phonet, handle empty phonet header
- LP: #769042
* x86: Fix a bogus unwind annotation in lib/semaphore_32.S
- LP: #769042
* tioca: Fix assignment from incompatible pointer warnings
- LP: #769042
* mca.c: Fix cast from integer to pointer warning
- LP: #769042
* vm: fix mlock() on stack guard page
- LP: #769042
* UBIFS: fix assertion warnings
- LP: #769042
* perf: Fix task context scheduling
- LP: #769042
* bridge: Fix possibly wrong MLD queries' ethernet source address
- LP: #769042
* fib: add rtnl locking in ip_fib_net_exit
- LP: #769042
* gianfar: Fall back to software tcp/udp checksum on older controllers
- LP: #769042
* l2tp: fix possible oops on l2tp_eth module unload
- LP: #769042
* net ipv6: Fix duplicate /proc/sys/net/ipv6/neigh directory entries.
- LP: #769042
* net_sched: fix ip_tos2prio
- LP: #769042
* pppoe: drop PPPOX_ZOMBIEs in pppoe_flush_dev
- LP: #769042
* sctp: Pass __GFP_NOWARN to hash table allocation attempts.
- LP: #769042
* tcp: avoid cwnd moderation in undo
- LP: #769042
* xfrm: Refcount destination entry on xfrm_lookup
- LP: #769042
* vlan: should take into account needed_headroom
- LP: #769042
* bridge: Reset IPCB when entering IP stack on NF_FORWARD
- LP: #769042
* sparc: Fix .size directive for do_int_load
- LP: #769042
* sparc32: Fix might-be-used-uninitialized warning in do_sparc_fault().
- LP: #769042
* sparc32: Pass task_struct to schedule_tail() in ret_from_fork
- LP: #769042
* sparc64: Fix build errors with gcc-4.6.0
- LP: #769042
* futex: Set FLAGS_HAS_TIMEOUT during futex_wait restart setup
- LP: #769042
* kstrto*: converting strings to integers done (hopefully) right
- LP: #769042
* mm/thp: use conventional format for boolean attributes
- LP: #769042
* ramfs: fix memleak on no-mmu arch
- LP: #769042
* oom-kill: remove boost_dying_task_prio()
- LP: #769042
* MAINTAINERS: update STABLE BRANCH info
- LP: #769042
* UBIFS: fix oops when R/O file-system is fsync'ed
- LP: #769042
* x86, AMD: Set ARAT feature on AMD processors
- LP: #769042
* x86, amd: Disable GartTlbWlkErr when BIOS forgets it
- LP: #769042
* vfs: Fix absolute RCU path walk failures due to uninitialized seq
number
- LP: #769042
* ARM: 6864/1: hw_breakpoint: clear DBGVCR out of reset
- LP: #769042
* i2c-algo-bit: Call pre/post_xfer for bit_test
- LP: #769042
* RTC: add missing "return 0" in new alarm func for rtc-bfin.c
- LP: #769042
* sched: Fix erroneous all_pinned logic
- LP: #769042
* vmscan: all_unreclaimable() use zone->all_unreclaimable as a name
- LP: #769042
* brk: COMPAT_BRK: fix detection of randomized brk
- LP: #769042
* usb: musb: temporarily make it bool
- LP: #769042
* USB: ftdi_sio: Added IDs for CTI USB Serial Devices
- LP: #769042
* USB: ftdi_sio: add PID for OCT DK201 docking station
- LP: #769042
* USB: ftdi_sio: add ids for Hameg HO720 and HO730
- LP: #769042
* USB: option: Added support for Samsung GT-B3730/GT-B3710 LTE USB modem.
- LP: #769042
* next_pidmap: fix overflow condition
- LP: #769042
* proc: do proper range check on readdir offset
- LP: #769042
* powerpc: Fix oops if scan_dispatch_log is called too early
- LP: #769042
* powerpc/perf_event: Skip updating kernel counters if register value
shrinks
- LP: #769042
* usb: Fix qcserial memory leak on rmmod
- LP: #769042
* usb: qcserial avoid pointing to freed memory
- LP: #769042
* usb: qcserial add missing errorpath kfrees
- LP: #769042
* USB: EHCI: unlink unused QHs when the controller is stopped
- LP: #769042
* USB: fix formatting of SuperSpeed endpoints in /proc/bus/usb/devices
- LP: #769042
* USB: xhci - fix unsafe macro definitions
- LP: #769042
* USB: xhci - fix math in xhci_get_endpoint_interval()
- LP: #769042
* USB: xhci - also free streams when resetting devices
- LP: #769042
* USB: Fix unplug of device with active streams
- LP: #769042
* radeon: Fix KMS CP writeback on big endian machines.
- LP: #769042
* Bluetooth: Fix HCI_RESET command synchronization
- LP: #700292, #769042
* perf tool: Fix gcc 4.6.0 issues
- LP: #769042
* bridge: reset IPCB in br_parse_ip_options
- LP: #769042
* ip: ip_options_compile() resilient to NULL skb route
- LP: #769042
* Linux 2.6.38.4
- LP: #769042
* (pre stable) ath9k_hw: partially revert "fix dma descriptor rx error
bit parsing"
- LP: #735171
* fs/partitions/ldm.c: fix oops caused by corrupted partition table,
CVE-2011-1017
- LP: #771382
- CVE-2011-1017
* (pre-stable) drm/i915: Sanitize the output registers after resume
- LP: #745304
linux-ti-omap4 (2.6.38-1208.12) natty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #770368
[ Bryan Wu ]
* merge Ubuntu-2.6.38-8.41
* merge Ubuntu-2.6.38-8.42
* merge u1 of 'for-ubuntu' branch
* [Config] sync up configs
[ David Henningsson ]
* SAUCE: (drop after 2.6.38) ALSA: HDA: Fix dock mic for Lenovo
X220-tablet
- LP: #751033
[ Gustavo F. Padovan ]
* SAUCE: Revert "Bluetooth: Add new PID for Atheros 3011"
- LP: #720949
[ Herton Ronaldo Krzesinski ]
* SAUCE: (drop after 2.6.39) v4l: make sure drivers supply a zeroed
struct v4l2_subdev
- LP: #745213
[ John Johansen ]
* AppArmor: Fix masking of capabilities in complain mode
- LP: #748656
[ Kees Cook ]
* SAUCE: nx-emu: further clarify dmesg reporting
- LP: #745181
[ Leann Ogasawara ]
* Ubuntu-2.6.38-8.40
* Ubuntu-2.6.38-8.41
* [Config] Disable CONFIG_RTS_PSTOR for armel, powerpc
* Ubuntu-2.6.38-8.42
[ Luke Yelavich ]
* [Config] Disable CONFIG_CRASH_DUMP on 32-bit powerpc kernels
- LP: #745358
* [Config] Disable CONFIG_DRM_RADEON_KMS on powerpc kernels
* [Config] Build some framebuffer drivers as modules for powerpc kernels.
[ Manoj Iyer ]
* SAUCE: thinkpad-acpi: module autoloading for newer Lenovo ThinkPads.
- LP: #745217
* SAUCE: (drop after 2.6.38) add support for Lenovo tablet ID (0xE6)
- LP: #746652
[ Seth Forshee ]
* SAUCE: (drop after 2.6.38) eeepc-wmi: Add support for T101MT
Home/Express Gate key
[ Steve Langasek ]
* [Config] Make linux-libc-dev coinstallable under multiarch
- LP: #750585
[ Tim Gardner ]
* SAUCE: Increase the default hard limit for open FDs to 4096
- LP: #663090
* [Config] CONFIG_RTS_PSTOR=m
- LP: #698006
[ Upstream Kernel Changes ]
* Revert "tcp: disallow bind() to reuse addr/port"
- LP: #731878
* ALSA: pcm: fix infinite loop in snd_pcm_update_hw_ptr0()
* Relax si_code check in rt_sigqueueinfo and rt_tgsigqueueinfo
* ALSA: HDA: Add dock mic quirk for Lenovo Thinkpad X220
- LP: #746259
* ALSA: HDA: New AD1984A model for Dell Precision R5500
- LP: #741516
* Input: sparse-keymap - report scancodes with key events
* Input: sparse-keymap - report KEY_UNKNOWN for unknown scan codes
* KVM: SVM: Load %gs earlier if CONFIG_X86_32_LAZY_GS=n
- LP: #729085
* watchdog: sp5100_tco.c: Check if firmware has set correct value in
tcobase.
- LP: #740011
* staging: add rts_pstor for Realtek PCIE cardreader
- LP: #698006
* staging: fix rts_pstor build errors
- LP: #698006
* Staging: rts_pstor: fixed some brace code styling issues
- LP: #698006
* staging: rts_pstor: potential NULL dereference
- LP: #698006
* Staging: rts_pstor: fix read past end of buffer
- LP: #698006
* staging: rts_pstor: delete a function
- LP: #698006
* staging: rts_pstor: fix sparse warning
- LP: #698006
* staging: rts_pstor: fix a bug that a greenhouse sd card can't be
recognized
- LP: #698006
* staging: rts_pstor: optimize kmalloc to kzalloc
- LP: #698006
* staging: rts_pstor: MSXC card power class
- LP: #698006
* staging: rts_pstor: modify initial card clock
- LP: #698006
* staging: rts_pstor: set lun_mode in a different place
- LP: #698006
* x86, hibernate: Initialize mmu_cr4_features during boot
- LP: #752870
* ARM: EXYNOS4: CPUIDLE Support
* ARM: EXYNOS4: Fix incorrect mapping of gpio pull-up macro to register
setting
* ARM: EXYNOS4: Fix card insert/removal event detection on smdkv310 board
* ARM: 6864/1: hw_breakpoint: clear DBGVCR out of reset
* ARM: 6865/1: perf: ensure pass through zero is counted on overflow
* ARM: 6866/1: Do not restrict HIGHPTE to !OUTER_CACHE
* ARM: 6867/1: Introduce THREAD_NOTIFY_COPY for copy_thread() hooks
* ARM: 6868/1: Preserve the VFP state during fork
* ARM: EXYNOS4: CPUIDLE Support
* config slim down reference defconfig
* MAKEFILE correct using shawn dtb method
* omap2 sdp4430 protect hdmi with hdmi sound config
* Subject: [PATCH 3/3] usb: musb: Moving the Vbus enable function call
from to workqueue.
* omap2 4430sdp board file rearrange
* alsa soc implement abe constraint test
* omap2 panda neutral reodering of structs
* omap2 hwmod 44xx neutral reordering
* alsa panda hdmi audio ensure cpu dai gets built
* omap2 hwmod 2420 mmc devattr name fix
* enable build omap3 boards
[ u1 of for-ubuntu ]
* ARM: EXYNOS4: CPUIDLE Support
* ARM: EXYNOS4: Fix incorrect mapping of gpio pull-up macro to register
setting
* ARM: EXYNOS4: Fix card insert/removal event detection on smdkv310 board
* ARM: 6864/1: hw_breakpoint: clear DBGVCR out of reset
* ARM: 6865/1: perf: ensure pass through zero is counted on overflow
* ARM: 6866/1: Do not restrict HIGHPTE to !OUTER_CACHE
* ARM: 6867/1: Introduce THREAD_NOTIFY_COPY for copy_thread() hooks
* ARM: 6868/1: Preserve the VFP state during fork
* ARM: EXYNOS4: CPUIDLE Support
* config slim down reference defconfig
* MAKEFILE correct using shawn dtb method
* omap2 sdp4430 protect hdmi with hdmi sound config
* Subject: [PATCH 3/3] usb: musb: Moving the Vbus enable function call
from to workqueue.
* omap2 4430sdp board file rearrange
* alsa soc implement abe constraint test
* omap2 panda neutral reodering of structs
* omap2 hwmod 44xx neutral reordering
* alsa panda hdmi audio ensure cpu dai gets built
* omap2 hwmod 2420 mmc devattr name fix
* enable build omap3 boards
[ Ubuntu: 2.6.38-8.42 ]
* SAUCE: (drop after 2.6.38) ALSA: HDA: Fix dock mic for Lenovo
X220-tablet
- LP: #751033
* SAUCE: Revert "Bluetooth: Add new PID for Atheros 3011"
- LP: #720949
* SAUCE: (drop after 2.6.39) v4l: make sure drivers supply a zeroed
struct v4l2_subdev
- LP: #745213
* AppArmor: Fix masking of capabilities in complain mode
- LP: #748656
* [Config] Disable CONFIG_RTS_PSTOR for armel, powerpc
* SAUCE: (drop after 2.6.38) add support for Lenovo tablet ID (0xE6)
- LP: #746652
* [Config] Make linux-libc-dev coinstallable under multiarch
- LP: #750585
* [Config] CONFIG_RTS_PSTOR=m
- LP: #698006
* Revert "tcp: disallow bind() to reuse addr/port"
- LP: #731878
* ALSA: HDA: Add dock mic quirk for Lenovo Thinkpad X220
- LP: #746259
* ALSA: HDA: New AD1984A model for Dell Precision R5500
- LP: #741516
* Input: sparse-keymap - report scancodes with key events
* Input: sparse-keymap - report KEY_UNKNOWN for unknown scan codes
* KVM: SVM: Load %gs earlier if CONFIG_X86_32_LAZY_GS=n
- LP: #729085
* watchdog: sp5100_tco.c: Check if firmware has set correct value in
tcobase.
- LP: #740011
* staging: add rts_pstor for Realtek PCIE cardreader
- LP: #698006
* staging: fix rts_pstor build errors
- LP: #698006
* Staging: rts_pstor: fixed some brace code styling issues
- LP: #698006
* staging: rts_pstor: potential NULL dereference
- LP: #698006
* Staging: rts_pstor: fix read past end of buffer
- LP: #698006
* staging: rts_pstor: delete a function
- LP: #698006
* staging: rts_pstor: fix sparse warning
- LP: #698006
* staging: rts_pstor: fix a bug that a greenhouse sd card can't be
recognized
- LP: #698006
* staging: rts_pstor: optimize kmalloc to kzalloc
- LP: #698006
* staging: rts_pstor: MSXC card power class
- LP: #698006
* staging: rts_pstor: modify initial card clock
- LP: #698006
* staging: rts_pstor: set lun_mode in a different place
- LP: #698006
* x86, hibernate: Initialize mmu_cr4_features during boot
- LP: #752870
[ Ubuntu: 2.6.38-8.41 ]
* [Config] Disable CONFIG_CRASH_DUMP on 32-bit powerpc kernels
- LP: #745358
* [Config] Disable CONFIG_DRM_RADEON_KMS on powerpc kernels
* [Config] Build some framebuffer drivers as modules for powerpc kernels.
* SAUCE: (drop after 2.6.38) eeepc-wmi: Add support for T101MT
Home/Express Gate key
* SAUCE: Increase the default hard limit for open FDs to 4096
- LP: #663090
* ALSA: pcm: fix infinite loop in snd_pcm_update_hw_ptr0()
* Relax si_code check in rt_sigqueueinfo and rt_tgsigqueueinfo
-- Paolo Pisati <paolo.pisati@xxxxxxxxxxxxx> Wed, 31 Aug 2011 18:34:36 +0200
** Changed in: linux-ti-omap4 (Ubuntu Natty)
Status: Fix Committed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1581
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2493
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2689
--
You received this bug notification because you are a member of eCryptfs,
which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/732628
Title:
TOCTOU in mount.ecryptfs_private
Status in eCryptfs - Enterprise Cryptographic Filesystem:
Fix Released
Status in “ecryptfs-utils” package in Ubuntu:
Fix Released
Status in “linux” package in Ubuntu:
Fix Released
Status in “linux-ec2” package in Ubuntu:
Invalid
Status in “linux-fsl-imx51” package in Ubuntu:
Invalid
Status in “linux-linaro” package in Ubuntu:
New
Status in “linux-lts-backport-maverick” package in Ubuntu:
Invalid
Status in “linux-lts-backport-natty” package in Ubuntu:
Invalid
Status in “linux-mvl-dove” package in Ubuntu:
Invalid
Status in “linux-qcm-msm” package in Ubuntu:
Invalid
Status in “linux-source-2.6.15” package in Ubuntu:
Invalid
Status in “linux-ti-omap” package in Ubuntu:
Invalid
Status in “linux-ti-omap4” package in Ubuntu:
Fix Committed
Status in “ecryptfs-utils” source package in Lucid:
Fix Released
Status in “linux” source package in Lucid:
Fix Committed
Status in “linux-ec2” source package in Lucid:
Fix Committed
Status in “linux-fsl-imx51” source package in Lucid:
Fix Released
Status in “linux-linaro” source package in Lucid:
New
Status in “linux-lts-backport-maverick” source package in Lucid:
Fix Committed
Status in “linux-lts-backport-natty” source package in Lucid:
Fix Committed
Status in “linux-mvl-dove” source package in Lucid:
Fix Committed
Status in “linux-qcm-msm” source package in Lucid:
Invalid
Status in “linux-source-2.6.15” source package in Lucid:
Invalid
Status in “linux-ti-omap” source package in Lucid:
Invalid
Status in “linux-ti-omap4” source package in Lucid:
Invalid
Status in “ecryptfs-utils” source package in Maverick:
Fix Released
Status in “linux” source package in Maverick:
Fix Committed
Status in “linux-ec2” source package in Maverick:
Invalid
Status in “linux-fsl-imx51” source package in Maverick:
Invalid
Status in “linux-linaro” source package in Maverick:
New
Status in “linux-lts-backport-maverick” source package in Maverick:
Invalid
Status in “linux-lts-backport-natty” source package in Maverick:
Invalid
Status in “linux-mvl-dove” source package in Maverick:
Fix Committed
Status in “linux-qcm-msm” source package in Maverick:
Invalid
Status in “linux-source-2.6.15” source package in Maverick:
Invalid
Status in “linux-ti-omap” source package in Maverick:
Invalid
Status in “linux-ti-omap4” source package in Maverick:
Fix Released
Status in “ecryptfs-utils” source package in Natty:
Fix Released
Status in “linux” source package in Natty:
Fix Released
Status in “linux-ec2” source package in Natty:
Invalid
Status in “linux-fsl-imx51” source package in Natty:
Invalid
Status in “linux-linaro” source package in Natty:
New
Status in “linux-lts-backport-maverick” source package in Natty:
Invalid
Status in “linux-lts-backport-natty” source package in Natty:
Invalid
Status in “linux-mvl-dove” source package in Natty:
Invalid
Status in “linux-qcm-msm” source package in Natty:
Invalid
Status in “linux-source-2.6.15” source package in Natty:
Invalid
Status in “linux-ti-omap” source package in Natty:
Invalid
Status in “linux-ti-omap4” source package in Natty:
Fix Released
Status in “ecryptfs-utils” source package in Oneiric:
Fix Released
Status in “linux” source package in Oneiric:
Fix Released
Status in “linux-ec2” source package in Oneiric:
Invalid
Status in “linux-fsl-imx51” source package in Oneiric:
Invalid
Status in “linux-linaro” source package in Oneiric:
New
Status in “linux-lts-backport-maverick” source package in Oneiric:
Invalid
Status in “linux-lts-backport-natty” source package in Oneiric:
Invalid
Status in “linux-mvl-dove” source package in Oneiric:
Invalid
Status in “linux-qcm-msm” source package in Oneiric:
Invalid
Status in “linux-source-2.6.15” source package in Oneiric:
Invalid
Status in “linux-ti-omap” source package in Oneiric:
Invalid
Status in “linux-ti-omap4” source package in Oneiric:
Fix Committed
Status in “ecryptfs-utils” source package in Hardy:
Invalid
Status in “linux” source package in Hardy:
Invalid
Status in “linux-ec2” source package in Hardy:
Invalid
Status in “linux-fsl-imx51” source package in Hardy:
Invalid
Status in “linux-linaro” source package in Hardy:
New
Status in “linux-lts-backport-maverick” source package in Hardy:
Invalid
Status in “linux-lts-backport-natty” source package in Hardy:
Invalid
Status in “linux-mvl-dove” source package in Hardy:
Invalid
Status in “linux-qcm-msm” source package in Hardy:
Invalid
Status in “linux-source-2.6.15” source package in Hardy:
Invalid
Status in “linux-ti-omap” source package in Hardy:
Invalid
Status in “linux-ti-omap4” source package in Hardy:
Invalid
Status in “ecryptfs-utils” package in Debian:
New
Status in “ecryptfs-utils” package in Fedora:
New
Bug description:
check_ownerships() function doesn't work as it should because of a
race condition. Arguments of both mount() and umount() calls can be
changed between the check and the usage. This may lead to arbitrary
mount point umounting or probably to gaining ability to try
passphrases of otherpeople's ecryptfs storages. lock_counter() is also
racy. It (1) tries to check existance and ownership of the file before
open(), (2) neither use stat() instead of lstat() nor O_NOFOLLOW, (3)
is not protected against deletion of the lock file by the owner. The
lock file should be probably created in root only writable directory
before dropping EUID.
Break-Fix: 237fead619984cc48818fe12ee0ceada3f55b012
764355487ea220fdc2faf128d577d7f679b91f97
To manage notifications about this bug go to:
https://bugs.launchpad.net/ecryptfs/+bug/732628/+subscriptions
References
