Bug #11562 “kernel: NFS fh_verify causes lost output (2.4 kernel...” : Bugs : linux-source-2.6.15 package : Ubuntu

Revision history for this message

Debian Bug Importer (debzilla) wrote on 2004-12-31:

#1

Automatically imported from Debian bug report #288046 http://bugs.debian.org/288046

Revision history for this message

Debian Bug Importer (debzilla) wrote on 2004-12-31:

#2

Message-Id: <email address hidden>
Date: Fri, 31 Dec 2004 22:23:10 +0100
From: Frans Pop <email address hidden>
To: <email address hidden>
Subject: kernel: NFS fh_verify causes lost output (2.4 kernel)

Package: kernel-source-2.4.27
Severity: grave
Justification: can cause data loss

I am seeing the problem described in #255931 in the Sarges current 2.4
kernel (2.4.27-6).
The problem is also described in [1].

I have experienced data loss in my mail files that I keep in a
NFS-exported home directory because of this problem.

The Mail directory and its subdirs were set to drwx------
After changing this to drwxr-xr-x

According to #255931 this has been fixed in 2.6 kernels, but apparently it
was not fixed in 2.4 kernels.

Note: my server is running Sarge with 2.4.27 kernel; the client is running
Sarge with 2.6.8 kernel.

[1] https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=110421

Cheers,
Frans Pop

Revision history for this message

Matt Zimmerman (mdz) wrote on 2005-01-04:

#3

unsupported package

Revision history for this message

In Debian Bug tracker #288046, Simon Horman (horms) wrote on 2005-01-17: update

#4

tag 288046 +patch
tag 288046 +pending

--
Horms

Revision history for this message

Debian Bug Importer (debzilla) wrote on 2005-01-17:

#5

Message-ID: <email address hidden>
Date: Mon, 17 Jan 2005 13:20:12 +0900
From: Horms <email address hidden>
To: <email address hidden>
Subject: update

tag 288046 +patch
tag 288046 +pending

--
Horms

Revision history for this message

In Debian Bug tracker #288046, Simon Horman (horms) wrote on 2005-01-21: Bug#288046: fixed in kernel-source-2.4.27 2.4.27-8

#6

Download full text (5.4 KiB)

Source: kernel-source-2.4.27
Source-Version: 2.4.27-8

We believe that the bug you reported is fixed in the latest version of
kernel-source-2.4.27, which is due to be installed in the Debian FTP archive:

kernel-doc-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-doc-2.4.27_2.4.27-8_all.deb
kernel-patch-debian-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-patch-debian-2.4.27_2.4.27-8_all.deb
kernel-source-2.4.27_2.4.27-8.diff.gz
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.diff.gz
kernel-source-2.4.27_2.4.27-8.dsc
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.dsc
kernel-source-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8_all.deb
kernel-tree-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-tree-2.4.27_2.4.27-8_all.deb

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to <email address hidden>,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Simon Horman <email address hidden> (supplier of updated kernel-source-2.4.27 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing <email address hidden>)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 18 Jan 2005 17:15:51 +0900
Source: kernel-source-2.4.27
Binary: kernel-tree-2.4.27 kernel-source-2.4.27 kernel-patch-debian-2.4.27 kernel-doc-2.4.27
Architecture: source all
Version: 2.4.27-8
Distribution: unstable
Urgency: high
Maintainer: Debian Kernel Team <email address hidden>
Changed-By: Simon Horman <email address hidden>
Description:
kernel-doc-2.4.27 - Linux kernel specific documentation for version 2.4.27
kernel-patch-debian-2.4.27 - Debian patches to Linux 2.4.27
kernel-source-2.4.27 - Linux kernel source for version 2.4.27 with Debian patches
kernel-tree-2.4.27 - Linux kernel tree for building prepackaged Debian kernel images
Closes: 285521 285563 288046 288272 288279 288712 289202 289517 289682 290013 290039
Changes:
kernel-source-2.4.27 (2.4.27-8) unstable; urgency=high
.
   * add dh_fixperms to the build targets to kernel-patch-debian-2.4.27
     to ensure that the permissions of the files in this package are
     sensible. (closes: Bug#288279) (Simon Horman)
   * Turn a make conditional into a runtime conditional to allow debian/rules
     prune to work. (closes: #289682) (Joshua Kwan)
.
   Patches applied:
.
   * 121_drm-locking-checks-1.diff, 121_drm-locking-checks-2.diff:
     [SECURITY] Fix insufficient locking checks in DRM code; CAN-2004-1056
     (Fabio M. Di Nitto, Dann Frazier, Simon Horman). (closes: Bug#285563)
   * 122_sec_brk-locked.diff
     [SECURITY] Fix vulnerability in the ELF loader code allowing
     local attacker to execute code as root; CAN-2004-1235. This is better
     known as the "uselib() bug". (closes: #289202) (Maximilian Attems)
   * 123_nfs_verify_eacces.diff
...

Source: kernel-source-2.4.27
Source-Version: 2.4.27-8

We believe that the bug you reported is fixed in the latest version of
kernel-source-2.4.27, which is due to be installed in the Debian FTP archive:

kernel-doc-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-doc-2.4.27_2.4.27-8_all.deb
kernel-patch-debian-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-patch-debian-2.4.27_2.4.27-8_all.deb
kernel-source-2.4.27_2.4.27-8.diff.gz
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.diff.gz
kernel-source-2.4.27_2.4.27-8.dsc
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.dsc
kernel-source-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8_all.deb
kernel-tree-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-tree-2.4.27_2.4.27-8_all.deb

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 288046@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Simon Horman <horms@debian.org> (supplier of updated kernel-source-2.4.27 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 18 Jan 2005 17:15:51 +0900
Source: kernel-source-2.4.27
Binary: kernel-tree-2.4.27 kernel-source-2.4.27 kernel-patch-debian-2.4.27 kernel-doc-2.4.27
Architecture: source all
Version: 2.4.27-8
Distribution: unstable
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Simon Horman <horms@debian.org>
Description: 
 kernel-doc-2.4.27 - Linux kernel specific documentation for version 2.4.27
 kernel-patch-debian-2.4.27 - Debian patches to Linux 2.4.27
 kernel-source-2.4.27 - Linux kernel source for version 2.4.27 with Debian patches
 kernel-tree-2.4.27 - Linux kernel tree for building prepackaged Debian kernel images
Closes: 285521 285563 288046 288272 288279 288712 289202 289517 289682 290013 290039
Changes: 
 kernel-source-2.4.27 (2.4.27-8) unstable; urgency=high
 .
   * add dh_fixperms to the build targets to kernel-patch-debian-2.4.27
     to ensure that the permissions of the files in this package are
     sensible. (closes: Bug#288279) (Simon Horman)
   * Turn a make conditional into a runtime conditional to allow debian/rules
     prune to work. (closes: #289682) (Joshua Kwan)
 .
   Patches applied:
 .
   * 121_drm-locking-checks-1.diff, 121_drm-locking-checks-2.diff:
     [SECURITY] Fix insufficient locking checks in DRM code; CAN-2004-1056
     (Fabio M. Di Nitto, Dann Frazier, Simon Horman). (closes: Bug#285563)
   * 122_sec_brk-locked.diff
     [SECURITY] Fix vulnerability in the ELF loader code allowing
     local attacker to execute code as root; CAN-2004-1235. This is better
     known as the "uselib() bug". (closes: #289202) (Maximilian Attems)
   * 123_nfs_verify_eacces.diff
     Return -EACCES instead of -ESTALE to fix some NFS data loss bugs, already
     fixed in 2.6 but not in 2.4. (closes: #288046) (Joshua Kwan)
   * 124_random_poolsize_overflow.diff
     [SECURITY] Fix integer overflow in random poolsize sysctl. (Simon Horman)
   * 125_moxa_bound_checking.diff
     [SECURITY] Fix bounds checking in moxa serial driver. (Simon Horman)
   * 126_rlimit_memlock_dos.diff
     [SECURITY] Fix RLIMIT_MEMLOCK local DoS (Simon Horman)
   * 127_fs_coda_coverty.diff
     [SECURITY] Untrusted user data in kernel. (Maxmilian Attems)
   * 128_net_fose_coverty.diff
     [SECURITY] Fix Coverity reported lack of bounds checking rose_rt_ioctl.
     (Maximilian Attems)
   * 129_net_sdla_coverty.diff
     [SECURITY] Fix sdla_xfer lack of bounds checking, reported by Coverity.
     (Maximilian Attems)
   * 130_fs_xfs_coverty.diff
     [SECURITY] Fix xfs_attrmulti_by_handle lack of bounds checking, reported
     by Coverity. (Maximilian Attems)
   * 131_expand_stack_race.diff
     [SECURITY] Fix expand_stack race in mm.h; see CAN-2005-0001.
   * 127_acpi_off.diff
     Do not do acpi_early_init() if acpi=off is in effect.
     (closes: #290039, #290013, #289517, #288712, #285521, #288272)
     (Simon Horman)
   * 133_strncpy_zero_pad.diff
     [SECURITY] Make sure strncpy null terminates strings. (CAN-2003-0465)
     Fix for s390x, ppc64 and s390. mips and alpha are still unfixed.
     N.B. This bug appears to be minor at best
     http://marc.theaimsgroup.com/?l=linux-kernel&m=105796021120436&w=2
     (See: #280492) (Simon Horman)
Files: 
 97a63b4b0cc25c21e5609fe7c2897caa 886 devel optional kernel-source-2.4.27_2.4.27-8.dsc
 8deef7c6d5f1ebd677253e4a3d326c4a 783407 devel optional kernel-source-2.4.27_2.4.27-8.diff.gz
 ab7999be4aeddae6e37ccaf2f397459f 581928 devel optional kernel-patch-debian-2.4.27_2.4.27-8_all.deb
 2f63270d257f724340f0a4f410fcb373 3576122 doc optional kernel-doc-2.4.27_2.4.27-8_all.deb
 0152552abefd29eb1c39d88e620fb8a8 31048618 devel optional kernel-source-2.4.27_2.4.27-8_all.deb
 d6f3103bc5394fefccdcbe070aefcd36 21286 devel optional kernel-tree-2.4.27_2.4.27-8_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB724Rdu+M6Iexz7URAjijAJ4hi05/cAN+LPp98oTvzZhgsYkTqQCePK3u
ev8Lo7eV6856leEC/UAWtj4=
=NBFC
-----END PGP SIGNATURE-----

Revision history for this message

Debian Bug Importer (debzilla) wrote on 2005-01-21:

#7

Download full text (5.6 KiB)

Message-Id: <email address hidden>
Date: Thu, 20 Jan 2005 23:17:45 -0500
From: Simon Horman <email address hidden>
To: <email address hidden>
Subject: Bug#288046: fixed in kernel-source-2.4.27 2.4.27-8

Source: kernel-source-2.4.27
Source-Version: 2.4.27-8

We believe that the bug you reported is fixed in the latest version of
kernel-source-2.4.27, which is due to be installed in the Debian FTP archive:

kernel-doc-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-doc-2.4.27_2.4.27-8_all.deb
kernel-patch-debian-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-patch-debian-2.4.27_2.4.27-8_all.deb
kernel-source-2.4.27_2.4.27-8.diff.gz
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.diff.gz
kernel-source-2.4.27_2.4.27-8.dsc
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.dsc
kernel-source-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8_all.deb
kernel-tree-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-tree-2.4.27_2.4.27-8_all.deb

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to <email address hidden>,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Simon Horman <email address hidden> (supplier of updated kernel-source-2.4.27 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing <email address hidden>)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 18 Jan 2005 17:15:51 +0900
Source: kernel-source-2.4.27
Binary: kernel-tree-2.4.27 kernel-source-2.4.27 kernel-patch-debian-2.4.27 kernel-doc-2.4.27
Architecture: source all
Version: 2.4.27-8
Distribution: unstable
Urgency: high
Maintainer: Debian Kernel Team <email address hidden>
Changed-By: Simon Horman <email address hidden>
Description:
kernel-doc-2.4.27 - Linux kernel specific documentation for version 2.4.27
kernel-patch-debian-2.4.27 - Debian patches to Linux 2.4.27
kernel-source-2.4.27 - Linux kernel source for version 2.4.27 with Debian patches
kernel-tree-2.4.27 - Linux kernel tree for building prepackaged Debian kernel images
Closes: 285521 285563 288046 288272 288279 288712 289202 289517 289682 290013 290039
Changes:
kernel-source-2.4.27 (2.4.27-8) unstable; urgency=high
.
   * add dh_fixperms to the build targets to kernel-patch-debian-2.4.27
     to ensure that the permissions of the files in this package are
     sensible. (closes: Bug#288279) (Simon Horman)
   * Turn a make conditional into a runtime conditional to allow debian/rules
     prune to work. (closes: #289682) (Joshua Kwan)
.
   Patches applied:
.
   * 121_drm-locking-checks-1.diff, 121_drm-locking-checks-2.diff:
     [SECURITY] Fix insufficient locking checks in DRM code; CAN-2004-1056
     (Fabio M. Di Nitto, Dann Frazier, Simon Horman). (closes: Bug#285563)
   * 122_sec_brk-locked.diff
     [SECURITY] Fix vulne...

Message-Id: <E1CrqEz-00027c-00@newraff.debian.org>
Date: Thu, 20 Jan 2005 23:17:45 -0500
From: Simon Horman <horms@debian.org>
To: 288046-close@bugs.debian.org
Subject: Bug#288046: fixed in kernel-source-2.4.27 2.4.27-8

Source: kernel-source-2.4.27
Source-Version: 2.4.27-8

We believe that the bug you reported is fixed in the latest version of
kernel-source-2.4.27, which is due to be installed in the Debian FTP archive:

kernel-doc-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-doc-2.4.27_2.4.27-8_all.deb
kernel-patch-debian-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-patch-debian-2.4.27_2.4.27-8_all.deb
kernel-source-2.4.27_2.4.27-8.diff.gz
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.diff.gz
kernel-source-2.4.27_2.4.27-8.dsc
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.dsc
kernel-source-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8_all.deb
kernel-tree-2.4.27_2.4.27-8_all.deb
  to pool/main/k/kernel-source-2.4.27/kernel-tree-2.4.27_2.4.27-8_all.deb

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 288046@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Simon Horman <horms@debian.org> (supplier of updated kernel-source-2.4.27 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 18 Jan 2005 17:15:51 +0900
Source: kernel-source-2.4.27
Binary: kernel-tree-2.4.27 kernel-source-2.4.27 kernel-patch-debian-2.4.27 kernel-doc-2.4.27
Architecture: source all
Version: 2.4.27-8
Distribution: unstable
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Simon Horman <horms@debian.org>
Description: 
 kernel-doc-2.4.27 - Linux kernel specific documentation for version 2.4.27
 kernel-patch-debian-2.4.27 - Debian patches to Linux 2.4.27
 kernel-source-2.4.27 - Linux kernel source for version 2.4.27 with Debian patches
 kernel-tree-2.4.27 - Linux kernel tree for building prepackaged Debian kernel images
Closes: 285521 285563 288046 288272 288279 288712 289202 289517 289682 290013 290039
Changes: 
 kernel-source-2.4.27 (2.4.27-8) unstable; urgency=high
 .
   * add dh_fixperms to the build targets to kernel-patch-debian-2.4.27
     to ensure that the permissions of the files in this package are
     sensible. (closes: Bug#288279) (Simon Horman)
   * Turn a make conditional into a runtime conditional to allow debian/rules
     prune to work. (closes: #289682) (Joshua Kwan)
 .
   Patches applied:
 .
   * 121_drm-locking-checks-1.diff, 121_drm-locking-checks-2.diff:
     [SECURITY] Fix insufficient locking checks in DRM code; CAN-2004-1056
     (Fabio M. Di Nitto, Dann Frazier, Simon Horman). (closes: Bug#285563)
   * 122_sec_brk-locked.diff
     [SECURITY] Fix vulnerability in the ELF loader code allowing
     local attacker to execute code as root; CAN-2004-1235. This is better
     known as the "uselib() bug". (closes: #289202) (Maximilian Attems)
   * 123_nfs_verify_eacces.diff
     Return -EACCES instead of -ESTALE to fix some NFS data loss bugs, already
     fixed in 2.6 but not in 2.4. (closes: #288046) (Joshua Kwan)
   * 124_random_poolsize_overflow.diff
     [SECURITY] Fix integer overflow in random poolsize sysctl. (Simon Horman)
   * 125_moxa_bound_checking.diff
     [SECURITY] Fix bounds checking in moxa serial driver. (Simon Horman)
   * 126_rlimit_memlock_dos.diff
     [SECURITY] Fix RLIMIT_MEMLOCK local DoS (Simon Horman)
   * 127_fs_coda_coverty.diff
     [SECURITY] Untrusted user data in kernel. (Maxmilian Attems)
   * 128_net_fose_coverty.diff
     [SECURITY] Fix Coverity reported lack of bounds checking rose_rt_ioctl.
     (Maximilian Attems)
   * 129_net_sdla_coverty.diff
     [SECURITY] Fix sdla_xfer lack of bounds checking, reported by Coverity.
     (Maximilian Attems)
   * 130_fs_xfs_coverty.diff
     [SECURITY] Fix xfs_attrmulti_by_handle lack of bounds checking, reported
     by Coverity. (Maximilian Attems)
   * 131_expand_stack_race.diff
     [SECURITY] Fix expand_stack race in mm.h; see CAN-2005-0001.
   * 127_acpi_off.diff
     Do not do acpi_early_init() if acpi=off is in effect.
     (closes: #290039, #290013, #289517, #288712, #285521, #288272)
     (Simon Horman)
   * 133_strncpy_zero_pad.diff
     [SECURITY] Make sure strncpy null terminates strings. (CAN-2003-0465)
     Fix for s390x, ppc64 and s390. mips and alpha are still unfixed.
     N.B. This bug appears to be minor at best
     http://marc.theaimsgroup.com/?l=linux-kernel&m=105796021120436&w=2
     (See: #280492) (Simon Horman)
Files: 
 97a63b4b0cc25c21e5609fe7c2897caa 886 devel optional kernel-source-2.4.27_2.4.27-8.dsc
 8deef7c6d5f1ebd677253e4a3d326c4a 783407 devel optional kernel-source-2.4.27_2.4.27-8.diff.gz
 ab7999be4aeddae6e37ccaf2f397459f 581928 devel optional kernel-patch-debian-2.4.27_2.4.27-8_all.deb
 2f63270d257f724340f0a4f410fcb373 3576122 doc optional kernel-doc-2.4.27_2.4.27-8_all.deb
 0152552abefd29eb1c39d88e620fb8a8 31048618 devel optional kernel-source-2.4.27_2.4.27-8_all.deb
 d6f3103bc5394fefccdcbe070aefcd36 21286 devel optional kernel-tree-2.4.27_2.4.27-8_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB724Rdu+M6Iexz7URAjijAJ4hi05/cAN+LPp98oTvzZhgsYkTqQCePK3u
ev8Lo7eV6856leEC/UAWtj4=
=NBFC
-----END PGP SIGNATURE-----

Bug Watch Updater (bug-watch-updater) on 2006-09-27

Changed in linux-source-2.6.15:
status:	Unknown → Fix Released

Affects		Status	Importance	Assigned to	Milestone
	linux-source-2.6.15 (Debian)	Fix Released	Unknown	debbugs #288046
	linux-source-2.6.15 (Ubuntu)	Invalid	High	Unassigned

Ubuntu
linux-source-2.6.15 package

kernel: NFS fh_verify causes lost output (2.4 kernel)

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntulinux-source-2.6.15 package

kernel: NFS fh_verify causes lost output (2.4 kernel)

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntu
linux-source-2.6.15 package