SOURCES: kernel-CVE-2008-0163.patch (NEW) - CVE-2008-0163 fix for ...
zbyniu
zbyniu at pld-linux.org
Mon Feb 11 20:14:01 CET 2008
Author: zbyniu Date: Mon Feb 11 19:14:01 2008 GMT
Module: SOURCES Tag: HEAD
---- Log message:
- CVE-2008-0163 fix for vserver
---- Files affected:
SOURCES:
kernel-CVE-2008-0163.patch (NONE -> 1.1) (NEW)
---- Diffs:
================================================================
Index: SOURCES/kernel-CVE-2008-0163.patch
diff -u /dev/null SOURCES/kernel-CVE-2008-0163.patch:1.1
--- /dev/null Mon Feb 11 20:14:01 2008
+++ SOURCES/kernel-CVE-2008-0163.patch Mon Feb 11 20:13:56 2008
@@ -0,0 +1,11 @@
+--- linux-2.6.22/kernel/ptrace.c 2007-07-09 13:20:03 +0200
++++ linux-2.6.22-vs2.2.0-rc5/kernel/ptrace.c 2007-06-15 04:28:02 +0200
+@@ -145,6 +146,8 @@ static int may_attach(struct task_struct
+ dumpable = task->mm->dumpable;
+ if (!dumpable && !capable(CAP_SYS_PTRACE))
+ return -EPERM;
++ if (!vx_check(task->xid, VX_ADMIN|VX_IDENT))
++ return -EPERM;
+
+ return security_ptrace(current, task);
+ }
================================================================
More information about the pld-cvs-commit
mailing list