/[linux-patches]/genpatches-2.6/trunk/2.6.14/1463_15.5_nfs-client-directio-panic.patch
Gentoo

Contents of /genpatches-2.6/trunk/2.6.14/1463_15.5_nfs-client-directio-panic.patch

Parent Directory Parent Directory | Revision Log Revision Log


Revision 328 - (hide annotations) (download) (as text)
Tue Mar 14 13:34:17 2006 UTC (14 years, 8 months ago) by johnm
File MIME type: text/x-diff
File size: 1003 byte(s)
2.6.14-11, rebase against local tree
1 johnm 328 From: Trond Myklebust <trond.myklebust@netapp.com>
2     Date: Wed, 15 Feb 2006 05:42:26 +0000 (-0500)
3     Subject: [PATCH] Normal user can panic NFS client with direct I/O (CVE-2006-0555)
4     X-Git-Url: http://www.kernel.org/git/?p=linux/kernel/git/chrisw/linux-2.6.15.y.git;a=commitdiff;h=93e3d00a9f0158e522cada1088233fad23247882
5    
6     [PATCH] Normal user can panic NFS client with direct I/O (CVE-2006-0555)
7    
8     This is CVE-2006-0555 and SGI bug 946529. A normal user can panic an
9     NFS client and cause a local DoS with 'judicious'(?) use of O_DIRECT.
10    
11     Signed-off-by: Chris Wright <chrisw@sous-sol.org>
12     ---
13    
14     --- a/fs/nfs/direct.c
15     +++ b/fs/nfs/direct.c
16     @@ -106,6 +106,11 @@ nfs_get_user_pages(int rw, unsigned long
17     result = get_user_pages(current, current->mm, user_addr,
18     page_count, (rw == READ), 0,
19     *pages, NULL);
20     + if (result >= 0 && result < page_count) {
21     + nfs_free_user_pages(*pages, result, 0);
22     + *pages = NULL;
23     + result = -EFAULT;
24     + }
25     up_read(&current->mm->mmap_sem);
26     }
27     return result;

  ViewVC Help
Powered by ViewVC 1.1.20