diff options
| author |   Brian Jackson <iggy@gentoo.org> | 2003-12-01 22:51:34 +0000 |
|---|---|---|
| committer | Brian Jackson <iggy@gentoo.org> | 2003-12-01 22:51:34 +0000 |
| commit | fb556959c42c96db02b644ccbf35ef62db5b57a2 (patch) | |
| tree | 7dce07448026ee6079f1330c6bec2430a4ed86da /sys-kernel/grsec-sources | |
| parent | added CC -yno_propolice because configure has problems with -nostdlib request... (diff) | |
| download | historical-fb556959c42c96db02b644ccbf35ef62db5b57a2.tar.gz historical-fb556959c42c96db02b644ccbf35ef62db5b57a2.tar.bz2 historical-fb556959c42c96db02b644ccbf35ef62db5b57a2.zip | |
fix do_brk vuln
Diffstat (limited to 'sys-kernel/grsec-sources')
7 files changed, 40 insertions, 13 deletions
diff --git a/sys-kernel/grsec-sources/ChangeLog b/sys-kernel/grsec-sources/ChangeLog index 02658739a370..bca6de7e70ba 100644 --- a/sys-kernel/grsec-sources/ChangeLog +++ b/sys-kernel/grsec-sources/ChangeLog @@ -1,9 +1,15 @@ # ChangeLog for sys-kernel/grsec-sources # Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/ChangeLog,v 1.5 2003/12/01 21:27:08 solar Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/ChangeLog,v 1.6 2003/12/01 22:48:34 iggy Exp $ *grsec-sources-2.4.23.1.9.13 (01 Dec 2003) + 01 Dec 2003; Brian Jackson <iggy@gentoo.org> + grsec-sources-2.4.21.1.9.11.ebuild, grsec-sources-2.4.21.2.0_rc2.ebuild, + grsec-sources-2.4.22.1.9.12.ebuild, grsec-sources-2.4.22.2.0_rc3.ebuild, + files/do_brk_fix.patch: + fix do_brk vuln + 01 Dec 2003; <solar@gentoo.org> grsec-sources-2.4.23.1.9.13.ebuild: performance enhancements, PaX updates including PT_GNU_STACK and PT_GNU_HEAP support, documentation updates, a fix for an initrd problem. diff --git a/sys-kernel/grsec-sources/Manifest b/sys-kernel/grsec-sources/Manifest index 85b56fd46ca1..fdbc3ee5ea93 100644 --- a/sys-kernel/grsec-sources/Manifest +++ b/sys-kernel/grsec-sources/Manifest @@ -1,12 +1,13 @@ -MD5 916f7d616f0c58d7e8507e0c365f4970 grsec-sources-2.4.21.2.0_rc2.ebuild 1667 -MD5 ffd77eca6117d9d054dc2ad98d5b27ea grsec-sources-2.4.21.1.9.11.ebuild 1666 -MD5 225cb9e370f4e7d3bc1a98549377249e metadata.xml 484 -MD5 0b7d48f034c6bc8ead15d46c7e7bdb85 ChangeLog 1193 -MD5 fd6786a0953d9e9072b20c4de511e4a7 grsec-sources-2.4.22.1.9.12.ebuild 3216 -MD5 122d507e0228496b4431daeeb10d39aa grsec-sources-2.4.22.2.0_rc3.ebuild 1667 +MD5 2581233dddaca4d5ce1513f029c1207e grsec-sources-2.4.21.1.9.11.ebuild 1744 +MD5 9a49af475db421eb00346696719b0c89 grsec-sources-2.4.22.2.0_rc3.ebuild 1745 MD5 e51371a91d9715275608a8c94eba2591 grsec-sources-2.4.23.1.9.13.ebuild 3205 -MD5 8ce72e4001839fb39f9d3b0597e681b8 files/digest-grsec-sources-2.4.21.1.9.11 219 +MD5 8567a295a9c2475224081ff538858894 grsec-sources-2.4.22.1.9.12.ebuild 3295 +MD5 84913aa6659b0bdd6898ac173bf7301b grsec-sources-2.4.21.2.0_rc2.ebuild 1745 +MD5 69523e9e6f31f5f60f1900f2b15ee20c ChangeLog 1434 +MD5 225cb9e370f4e7d3bc1a98549377249e metadata.xml 484 +MD5 5d73c6a026b1dc5492a52c9aa4dc6c03 files/digest-grsec-sources-2.4.23.1.9.13 219 MD5 a66ec80566f602367995d845a5266ed4 files/digest-grsec-sources-2.4.21.2.0_rc2 221 +MD5 e637c6fa41097ea2c4693d0766f2e1c5 files/do_brk_fix.patch 242 MD5 d321249b3131edd6a4a7b55bd63a5f47 files/digest-grsec-sources-2.4.22.1.9.12 367 +MD5 8ce72e4001839fb39f9d3b0597e681b8 files/digest-grsec-sources-2.4.21.1.9.11 219 MD5 21c883b5aea0e41748002a4eb76a98ce files/digest-grsec-sources-2.4.22.2.0_rc3 221 -MD5 5d73c6a026b1dc5492a52c9aa4dc6c03 files/digest-grsec-sources-2.4.23.1.9.13 219 diff --git a/sys-kernel/grsec-sources/files/do_brk_fix.patch b/sys-kernel/grsec-sources/files/do_brk_fix.patch new file mode 100644 index 000000000000..fef1f1e981e2 --- /dev/null +++ b/sys-kernel/grsec-sources/files/do_brk_fix.patch @@ -0,0 +1,12 @@ +--- a/mm/mmap.c Fri Sep 12 06:44:06 2003 ++++ b/mm/mmap.c Thu Oct 2 01:18:19 2003 +@@ -1041,6 +1041,9 @@ + if (!len) + return addr; + ++ if ((addr + len) > TASK_SIZE || (addr + len) < addr) ++ return -EINVAL; ++ + /* + * mlock MCL_FUTURE? + */ diff --git a/sys-kernel/grsec-sources/grsec-sources-2.4.21.1.9.11.ebuild b/sys-kernel/grsec-sources/grsec-sources-2.4.21.1.9.11.ebuild index 8e8f249c2eb7..341450b63a55 100644 --- a/sys-kernel/grsec-sources/grsec-sources-2.4.21.1.9.11.ebuild +++ b/sys-kernel/grsec-sources/grsec-sources-2.4.21.1.9.11.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2003 Gentoo Technologies, Inc. # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.21.1.9.11.ebuild,v 1.2 2003/11/05 17:29:40 solar Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.21.1.9.11.ebuild,v 1.3 2003/12/01 22:48:34 iggy Exp $ # Documentation on the patch contained in this kernel will be installed someday @@ -43,6 +43,8 @@ src_unpack() { mkdir -p docs touch docs/patches.txt + epatch ${FILESDIR}/do_brk_fix.patch || die "failed to patch for do_brk vuln" + kernel_universal_unpack # kernel_src_unpack } diff --git a/sys-kernel/grsec-sources/grsec-sources-2.4.21.2.0_rc2.ebuild b/sys-kernel/grsec-sources/grsec-sources-2.4.21.2.0_rc2.ebuild index a49263f34d56..d736501f266d 100644 --- a/sys-kernel/grsec-sources/grsec-sources-2.4.21.2.0_rc2.ebuild +++ b/sys-kernel/grsec-sources/grsec-sources-2.4.21.2.0_rc2.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2003 Gentoo Technologies, Inc. # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.21.2.0_rc2.ebuild,v 1.2 2003/11/05 17:29:40 solar Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.21.2.0_rc2.ebuild,v 1.3 2003/12/01 22:48:34 iggy Exp $ # Documentation on the patch contained in this kernel will be installed someday @@ -43,6 +43,8 @@ src_unpack() { mkdir -p docs touch docs/patches.txt + epatch ${FILESDIR}/do_brk_fix.patch || die "failed to patch for do_brk vuln" + kernel_universal_unpack # kernel_src_unpack } diff --git a/sys-kernel/grsec-sources/grsec-sources-2.4.22.1.9.12.ebuild b/sys-kernel/grsec-sources/grsec-sources-2.4.22.1.9.12.ebuild index e5b7dfdd81be..6fde8e2028db 100644 --- a/sys-kernel/grsec-sources/grsec-sources-2.4.22.1.9.12.ebuild +++ b/sys-kernel/grsec-sources/grsec-sources-2.4.22.1.9.12.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2003 Gentoo Technologies, Inc. # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.22.1.9.12.ebuild,v 1.2 2003/09/17 19:25:12 pappy Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.22.1.9.12.ebuild,v 1.3 2003/12/01 22:48:34 iggy Exp $ # Documentation on the patch contained in this kernel will be installed someday @@ -77,6 +77,8 @@ src_unpack() { die "Unable to the kernel patch" fi + epatch ${FILESDIR}/do_brk_fix.patch || die "failed to patch for do_brk vuln" + mkdir -p docs touch docs/patches.txt kernel_universal_unpack diff --git a/sys-kernel/grsec-sources/grsec-sources-2.4.22.2.0_rc3.ebuild b/sys-kernel/grsec-sources/grsec-sources-2.4.22.2.0_rc3.ebuild index 37ab0e45e47d..33ce7dd21966 100644 --- a/sys-kernel/grsec-sources/grsec-sources-2.4.22.2.0_rc3.ebuild +++ b/sys-kernel/grsec-sources/grsec-sources-2.4.22.2.0_rc3.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2003 Gentoo Technologies, Inc. # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.22.2.0_rc3.ebuild,v 1.2 2003/11/05 17:29:40 solar Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/grsec-sources/grsec-sources-2.4.22.2.0_rc3.ebuild,v 1.3 2003/12/01 22:48:34 iggy Exp $ # Documentation on the patch contained in this kernel will be installed someday @@ -40,6 +40,8 @@ src_unpack() { die "Unable to the kernel patch" fi + epatch ${FILESDIR}/do_brk_fix.patch || die "failed to patch for do_brk vuln" + mkdir -p docs touch docs/patches.txt |