[pve-devel] [PATCH pve-kernel 0/3] add 2 security fixes and update ZFS

Stoiko Ivanov s.ivanov at proxmox.com
Wed Nov 14 20:25:25 CET 2018


Today 2 security related patchsets were sent over the Ubuntu Kernel ML, both
addressing issues in user- and mountnamespaces (Thanks @Fabian for pointing them
out!)

Since the other commits from Ubuntu-4.15.0-40.43 onwards had no security
implications I cherry-picked the 3 relevant commits.

Additionally my testbuild included the updated ZFS version 0.7.12

Stoiko Ivanov (3):
  Add 3 Patches addressing security issues
  update ZFS on Linux to 0.7.12
  bump version to 4.15.18-30

 Makefile                                      |  2 +-
 debian/changelog                              |  7 ++
 ...extents-in-the-reverse-map-to-kernel.patch | 75 ++++++++++++++++++
 ...mount-Retest-MNT_LOCKED-in-do_umount.patch | 67 ++++++++++++++++
 ...w-copying-MNT_UNBINDABLE-MNT_LOCKED-.patch | 78 +++++++++++++++++++
 submodules/zfsonlinux                         |  2 +-
 6 files changed, 229 insertions(+), 2 deletions(-)
 create mode 100644 patches/kernel/0009-userns-also-map-extents-in-the-reverse-map-to-kernel.patch
 create mode 100644 patches/kernel/0010-mount-Retest-MNT_LOCKED-in-do_umount.patch
 create mode 100644 patches/kernel/0011-mount-Don-t-allow-copying-MNT_UNBINDABLE-MNT_LOCKED-.patch

-- 
2.19.1





More information about the pve-devel mailing list