From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <stable-owner@vger.kernel.org>
Received: from mail-pg1-f196.google.com ([209.85.215.196]:41263 "EHLO
        mail-pg1-f196.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726399AbeJFH5Q (ORCPT
        <rfc822;stable@vger.kernel.org>); Sat, 6 Oct 2018 03:57:16 -0400
Received: by mail-pg1-f196.google.com with SMTP id 23-v6so5404967pgc.8
        for <stable@vger.kernel.org>; Fri, 05 Oct 2018 17:56:05 -0700 (PDT)
From: Daniel Rosenberg <drosen@google.com>
To: stable@vger.kernel.org
Cc: Daniel Rosenberg <drosen@google.com>
Subject: [PATCH 0/2] A couple recent ext4 CVE fixes
Date: Fri,  5 Oct 2018 17:55:52 -0700
Message-Id: <20181006005554.166757-1-drosen@google.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Sender: stable-owner@vger.kernel.org
List-ID: <stable.vger.kernel.org>

A couple ext4-related CVE fixes were released to other kernels in
linux-stable, but didn't cleanly apply to 4.9.y. These are adjusted
cherry-picks of Ben Hutching's 3.16.y backports.

Theodore Ts'o (2):
  ext4: add corruption check in ext4_xattr_set_entry()
  ext4: always verify the magic number in xattr blocks

 fs/ext4/xattr.c | 28 +++++++++++++++++-----------
 1 file changed, 17 insertions(+), 11 deletions(-)

-- 
2.19.0.605.g01d371f741-goog