[pve-devel] [PATCH corosync-pve 0/3] fix CVE-2018-1084

Fabian Gr├╝nbichler f.gruenbichler at proxmox.com
Fri Apr 13 10:54:05 CEST 2018


Fabian Gr├╝nbichler (3):
  cherry-pick CVE-2018-1084 fix
  reformat old patches
  bump version to 2.4.2-pve4

 changelog.Debian                                   |   6 +
 Makefile                                           |   2 +-
 .../0001-add-Provides-Replaces-corosync-pve.patch  |   8 +-
 .../0002-don-t-install-default-corosync.conf.patch |  10 +-
 ...restart-after-package-upgrade-is-complete.patch |   8 +-
 patches/0004-remove-init-script.patch              |   8 +-
 ...c-pve-postinst-for-restart-on-dist-upgrad.patch |   8 +-
 ...add-libcorosync4-pve-transitional-package.patch |   8 +-
 ...nly-start-corosync.service-if-conf-exists.patch |  10 +-
 ...essary-and-problematic-corosync-qdevice.i.patch |  78 ------------
 ...08-totemcrypto-Check-length-of-the-packet.patch |  53 ++++++++
 ...-totemudp-Check-lenght-of-message-to-sent.patch | 125 +++++++++++++++++++
 ...-msgio-Fix-reading-of-msg-longer-than-i32.patch | 137 +++++++++++++++++++++
 patches/series                                     |   4 +-
 14 files changed, 355 insertions(+), 110 deletions(-)
 delete mode 100644 patches/0008-remove-unecessary-and-problematic-corosync-qdevice.i.patch
 create mode 100644 patches/0008-totemcrypto-Check-length-of-the-packet.patch
 create mode 100644 patches/0012-totemudp-Check-lenght-of-message-to-sent.patch
 create mode 100644 patches/0013-qdevice-msgio-Fix-reading-of-msg-longer-than-i32.patch

-- 
2.14.2




More information about the pve-devel mailing list