Hello community, here is the log from the commit of package kernel-source for openSUSE:Factory checked in at 2013-11-08 08:37:12 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/kernel-source (Old) and /work/SRC/openSUSE:Factory/.kernel-source.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "kernel-source" Changes: -------- --- /work/SRC/openSUSE:Factory/kernel-source/kernel-cubox.changes 2013-11-01 07:33:53.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.kernel-source.new/kernel-cubox.changes 2013-11-08 08:37:13.000000000 +0100 @@ -1,0 +2,7 @@ +Wed Nov 6 14:54:28 CET 2013 - mho...@suse.cz + +- Fix a few incorrectly checked [io_]remap_pfn_range() calls + (bnc#849021, CVE-2013-4511). +- commit 2607707 + +------------------------------------------------------------------- kernel-debug.changes: same change kernel-default.changes: same change kernel-desktop.changes: same change kernel-docs.changes: same change kernel-ec2.changes: same change kernel-exynos.changes: same change kernel-lpae.changes: same change kernel-pae.changes: same change kernel-source.changes: same change kernel-syms.changes: same change kernel-trace.changes: same change kernel-vanilla.changes: same change kernel-xen.changes: same change ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ kernel-cubox.spec ++++++ --- /var/tmp/diff_new_pack.zbf8IS/_old 2013-11-08 08:37:20.000000000 +0100 +++ /var/tmp/diff_new_pack.zbf8IS/_new 2013-11-08 08:37:20.000000000 +0100 @@ -61,7 +61,7 @@ Summary: Kernel for SolidRun Cubox Version: 3.11.6 %if 0%{?is_kotd} -Release: <RELEASE>.ge6d4a27 +Release: <RELEASE>.g2607707 %else Release: 0 %endif kernel-debug.spec: same change kernel-default.spec: same change kernel-desktop.spec: same change kernel-docs.spec: same change kernel-ec2.spec: same change kernel-exynos.spec: same change kernel-lpae.spec: same change kernel-pae.spec: same change kernel-source.spec: same change ++++++ kernel-syms.spec ++++++ --- /var/tmp/diff_new_pack.zbf8IS/_old 2013-11-08 08:37:20.000000000 +0100 +++ /var/tmp/diff_new_pack.zbf8IS/_new 2013-11-08 08:37:20.000000000 +0100 @@ -26,7 +26,7 @@ Version: 3.11.6 %if %using_buildservice %if 0%{?is_kotd} -Release: <RELEASE>.ge6d4a27 +Release: <RELEASE>.g2607707 %else Release: 0 %endif ++++++ kernel-trace.spec ++++++ --- /var/tmp/diff_new_pack.zbf8IS/_old 2013-11-08 08:37:20.000000000 +0100 +++ /var/tmp/diff_new_pack.zbf8IS/_new 2013-11-08 08:37:20.000000000 +0100 @@ -61,7 +61,7 @@ Summary: The Standard Kernel with Tracing Features Version: 3.11.6 %if 0%{?is_kotd} -Release: <RELEASE>.ge6d4a27 +Release: <RELEASE>.g2607707 %else Release: 0 %endif kernel-vanilla.spec: same change kernel-xen.spec: same change ++++++ patches.fixes.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.fixes/Fix-a-few-incorrectly-checked-io_-remap_pfn_range-ca.patch new/patches.fixes/Fix-a-few-incorrectly-checked-io_-remap_pfn_range-ca.patch --- old/patches.fixes/Fix-a-few-incorrectly-checked-io_-remap_pfn_range-ca.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/patches.fixes/Fix-a-few-incorrectly-checked-io_-remap_pfn_range-ca.patch 2013-11-06 14:54:28.000000000 +0100 @@ -0,0 +1,52 @@ +From 7314e613d5ff9f0934f7a0f74ed7973b903315d1 Mon Sep 17 00:00:00 2001 +From: Linus Torvalds <torva...@linux-foundation.org> +Date: Tue, 29 Oct 2013 10:21:34 -0700 +Subject: [PATCH] Fix a few incorrectly checked [io_]remap_pfn_range() calls +Git-commit: 7314e613d5ff9f0934f7a0f74ed7973b903315d1 +Patch-mainline: 3.12 +References: bnc#849021, CVE-2013-4511 + +mho...@suse.cz: +drop au1100fb and au1200fb as they are not relevant for us because they are +MIPS specific. They also depend on the helped introduced by b4cbb197c7e7a (vm: +add vm_iomap_memory() helper function) + +Nico Golde reports a few straggling uses of [io_]remap_pfn_range() that +really should use the vm_iomap_memory() helper. This trivially converts +two of them to the helper, and comments about why the third one really +needs to continue to use remap_pfn_range(), and adds the missing size +check. + +Reported-by: Nico Golde <n...@ngolde.de> +Cc: sta...@kernel.org +Signed-off-by: Linus Torvalds <torva...@linux-foundation.org. +Acked-by: Michal Hocko <mho...@suse.cz> + +--- + drivers/uio/uio.c | 8 +++++++- + 1 file changed, 7 insertions(+), 1 deletion(-) + +--- a/drivers/uio/uio.c ++++ b/drivers/uio/uio.c +@@ -650,14 +650,20 @@ static int uio_mmap_physical(struct vm_a + { + struct uio_device *idev = vma->vm_private_data; + int mi = uio_find_mem_index(vma); ++ struct uio_mem *mem; + if (mi < 0) + return -EINVAL; + ++ mem = idev->info->mem + mi; ++ ++ if (vma->vm_end - vma->vm_start > mem->size) ++ return -EINVAL; ++ + vma->vm_page_prot = pgprot_noncached(vma->vm_page_prot); + + return remap_pfn_range(vma, + vma->vm_start, +- idev->info->mem[mi].addr >> PAGE_SHIFT, ++ mem->addr >> PAGE_SHIFT, + vma->vm_end - vma->vm_start, + vma->vm_page_prot); + } ++++++ series.conf ++++++ --- /var/tmp/diff_new_pack.zbf8IS/_old 2013-11-08 08:37:21.000000000 +0100 +++ /var/tmp/diff_new_pack.zbf8IS/_new 2013-11-08 08:37:21.000000000 +0100 @@ -528,6 +528,7 @@ # Security stuff # ########################################################## + patches.fixes/Fix-a-few-incorrectly-checked-io_-remap_pfn_range-ca.patch ########################################################## # Audit ++++++ source-timestamp ++++++ --- /var/tmp/diff_new_pack.zbf8IS/_old 2013-11-08 08:37:21.000000000 +0100 +++ /var/tmp/diff_new_pack.zbf8IS/_new 2013-11-08 08:37:21.000000000 +0100 @@ -1,3 +1,3 @@ -2013-10-30 19:04:56 +0100 -GIT Revision: e6d4a2702ebe275d6b1fc8218cb71a98757f35db +2013-11-06 14:54:28 +0100 +GIT Revision: 2607707bb5fc8eb6a132671dfdf8be56978f697d GIT Branch: openSUSE-13.1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org