Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Fri, 29 May 2009 17:20:29 +0200
From: Marcus Meissner <>
To: OSS Security List <>
Subject: CVE request: kernel: splice local denial of service

Hi oss-sec,

CVE Request for a local denial kernel issue....

The splice(2) syscall has received some fixes against local deadlocks.

2.6.30-rc3 is fixed, is fixed, and is fixed.

The inode double locking code was introduced in 2.6.19, so I guess earlier
kernel versions are not affected. (Miklos?)

Its as far as I understand this set of changes in mainline:;a=commitdiff;h=7bfac9ecf0585962fe13584f5cf526d8c8e76f17
(this one with description of issue);a=commitdiff;h=b3c2d2ddd63944ef2a1e4a43077b602288107e01;a=commitdiff;h=2933970b960223076d6affcf7a77e2bc546b8102;a=commitdiff;h=eb443e5a25d43996deb62b9bcee1a4ce5dea2ead;a=commitdiff;h=328eaaba4e41a04c1dc4679d65bea3fee4349d86

Ciao, Marcus

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.