[pve-devel] [PATCH corosync-pve 0/3] fix CVE-2018-1084
Fabian Grünbichler
f.gruenbichler at proxmox.com
Fri Apr 13 10:54:05 CEST 2018
Fabian Grünbichler (3):
cherry-pick CVE-2018-1084 fix
reformat old patches
bump version to 2.4.2-pve4
changelog.Debian | 6 +
Makefile | 2 +-
.../0001-add-Provides-Replaces-corosync-pve.patch | 8 +-
.../0002-don-t-install-default-corosync.conf.patch | 10 +-
...restart-after-package-upgrade-is-complete.patch | 8 +-
patches/0004-remove-init-script.patch | 8 +-
...c-pve-postinst-for-restart-on-dist-upgrad.patch | 8 +-
...add-libcorosync4-pve-transitional-package.patch | 8 +-
...nly-start-corosync.service-if-conf-exists.patch | 10 +-
...essary-and-problematic-corosync-qdevice.i.patch | 78 ------------
...08-totemcrypto-Check-length-of-the-packet.patch | 53 ++++++++
...-totemudp-Check-lenght-of-message-to-sent.patch | 125 +++++++++++++++++++
...-msgio-Fix-reading-of-msg-longer-than-i32.patch | 137 +++++++++++++++++++++
patches/series | 4 +-
14 files changed, 355 insertions(+), 110 deletions(-)
delete mode 100644 patches/0008-remove-unecessary-and-problematic-corosync-qdevice.i.patch
create mode 100644 patches/0008-totemcrypto-Check-length-of-the-packet.patch
create mode 100644 patches/0012-totemudp-Check-lenght-of-message-to-sent.patch
create mode 100644 patches/0013-qdevice-msgio-Fix-reading-of-msg-longer-than-i32.patch
--
2.14.2
More information about the pve-devel
mailing list