cluster-devel.redhat.com archive mirror
 help / color / mirror / Atom feed
* [Cluster-devel] [PATCH][GFS2] Bug 586009 - CVE-2010-1436 kernel: oops while cp from ext3 to gfs2 [rhel-6.0]
       [not found] <924012423.251581273268920873.JavaMail.root@zmail05.collab.prod.int.phx2.redhat.com>
@ 2010-05-07 21:50 ` Abhijith Das
  2010-05-10 12:56   ` Steven Whitehouse
  0 siblings, 1 reply; 2+ messages in thread
From: Abhijith Das @ 2010-05-07 21:50 UTC (permalink / raw)
  To: cluster-devel.redhat.com

This is the upstream/rhel6 fix for this bug. This patch differs
from the RHEL5 fix (555754) which simply writes to the 8-byte 
value field of the quota. In upstream/rhel6 quota code, we're
required to write the entire quota (88 bytes) which can be split
across a page boundary. We check for such quotas, and read/write
the two parts from/to the corresponding pages holding these parts.

With this patch, I don't see the bug anymore using the reproducer
in bz 555754. I successfully ran a couple of simple tests/mounts/
umounts and it doesn't seem like this patch breaks anything else.

Resolves: rhbz#586009
Signed-off-by: Abhi Das <adas@redhat.com>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: bz586009-try3.patch
Type: text/x-patch
Size: 4113 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/cluster-devel/attachments/20100507/f7fbedf6/attachment.bin>

^ permalink raw reply	[flat|nested] 2+ messages in thread
* [Cluster-devel] [PATCH][GFS2] Bug 586009 - CVE-2010-1436 kernel: oops while cp from ext3 to gfs2 [rhel-6.0]
  2010-05-07 21:50 ` [Cluster-devel] [PATCH][GFS2] Bug 586009 - CVE-2010-1436 kernel: oops while cp from ext3 to gfs2 [rhel-6.0] Abhijith Das
@ 2010-05-10 12:56   ` Steven Whitehouse
  0 siblings, 0 replies; 2+ messages in thread
From: Steven Whitehouse @ 2010-05-10 12:56 UTC (permalink / raw)
  To: cluster-devel.redhat.com

Hi,

Now in the -nmw git tree. Thanks,

Steve

On Fri, 2010-05-07 at 17:50 -0400, Abhijith Das wrote:
> This is the upstream/rhel6 fix for this bug. This patch differs
> from the RHEL5 fix (555754) which simply writes to the 8-byte 
> value field of the quota. In upstream/rhel6 quota code, we're
> required to write the entire quota (88 bytes) which can be split
> across a page boundary. We check for such quotas, and read/write
> the two parts from/to the corresponding pages holding these parts.
> 
> With this patch, I don't see the bug anymore using the reproducer
> in bz 555754. I successfully ran a couple of simple tests/mounts/
> umounts and it doesn't seem like this patch breaks anything else.
> 
> Resolves: rhbz#586009
> Signed-off-by: Abhi Das <adas@redhat.com>



^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2010-05-10 12:56 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
     [not found] <924012423.251581273268920873.JavaMail.root@zmail05.collab.prod.int.phx2.redhat.com>
2010-05-07 21:50 ` [Cluster-devel] [PATCH][GFS2] Bug 586009 - CVE-2010-1436 kernel: oops while cp from ext3 to gfs2 [rhel-6.0] Abhijith Das
2010-05-10 12:56   ` Steven Whitehouse

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).