Re: CVE-2009-4537

From: David Miller
Date: Sat Mar 27 2010 - 13:35:41 EST

Next message: Robert Hancock: "Re: [Regression] r8169: enable 64-bit DMA by default for PCI Expressdevices (v2)"
Previous message: David Miller: "Re: CVE-2009-4537"
In reply to: David Miller: "Re: CVE-2009-4537"
Next in thread: Neil Horman: "Re: CVE-2009-4537"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: David Miller <davem@xxxxxxxxxxxxx>
Date: Sat, 27 Mar 2010 10:34:07 -0700 (PDT)

> From: Michael Gilbert <michael.s.gilbert@xxxxxxxxx>
> Date: Sat, 27 Mar 2010 14:21:00 -0400
>
>> Hi,
>>
>> CVE-2009-4537 has been disclosed without any upstream activity for a
>> while now. Discussion about the issue dried up in January [0], and a
>> patch had been proposed [1], but no arguments were seen either for or
>> against it. Note that redhat has already shipped that in their various
>> kernel security updates. Would it make sense to merge those changes
>> officially?
>
> A different version of the fix went into the tree.

Ignore me, that was a fix for a different problem.

I was waiting for Francois to come up with a cleaner fix
but he stopped working on it, so yes I should put in
the fix you mention or something similar.

Neil, can you formally submit a version of the r8169
CVE for upstream?

Thanks.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Robert Hancock: "Re: [Regression] r8169: enable 64-bit DMA by default for PCI Expressdevices (v2)"
Previous message: David Miller: "Re: CVE-2009-4537"
In reply to: David Miller: "Re: CVE-2009-4537"
Next in thread: Neil Horman: "Re: CVE-2009-4537"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]