Bastian Blank
2008-Jul-12 10:07 UTC
[Pkg-xen-changes] r597 - in branches/etch/xen-3.0/debian: . patches
Author: waldi
Date: Sat Jul 12 10:07:55 2008
New Revision: 597
Log:
Add NMU patch for 3.0.3-0-4.
Added:
branches/etch/xen-3.0/debian/patches/CVE-2007-3919.dpatch (contents, props
changed)
Modified:
branches/etch/xen-3.0/debian/changelog
Modified: branches/etch/xen-3.0/debian/changelog
=============================================================================---
branches/etch/xen-3.0/debian/changelog (original)
+++ branches/etch/xen-3.0/debian/changelog Sat Jul 12 10:07:55 2008
@@ -1,3 +1,11 @@
+xen-3.0 (3.0.3-0-4) stable-security; urgency=low
+
+ * Non-maintainer upload by The Security Team.
+ * Avoid the use of an insecure temporary file for communication between
+ xenmon.py & xenbaked. [CVE-2007-3919]
+
+ -- Steve Kemp <skx at debian.org> Mon, 22 Oct 2007 22:27:06 +0000
+
xen-3.0 (3.0.3-0-3) stable-security; urgency=low
* Use linux-support-2.6.18-5.
Added: branches/etch/xen-3.0/debian/patches/CVE-2007-3919.dpatch
=============================================================================---
(empty file)
+++ branches/etch/xen-3.0/debian/patches/CVE-2007-3919.dpatch Sat Jul 12
10:07:55 2008
@@ -0,0 +1,25 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+
+ at DPATCH@
+--- xen-3.0-3.0.3-0.orig/tools/xenmon/xenbaked.c
++++ xen-3.0-3.0.3-0/tools/xenmon/xenbaked.c
+@@ -593,7 +593,7 @@
+ return 0;
+ }
+
+-#define SHARED_MEM_FILE "/tmp/xenq-shm"
++#define SHARED_MEM_FILE "/var/run/xenmon"
+ void alloc_qos_data(int ncpu)
+ {
+ int i, n, pgsize, off=0;
+--- xen-3.0-3.0.3-0.orig/tools/xenmon/xenmon.py
++++ xen-3.0-3.0.3-0/tools/xenmon/xenmon.py
+@@ -46,7 +46,7 @@
+ QOS_DATA_SIZE = struct.calcsize(ST_QDATA)*NSAMPLES +
struct.calcsize(ST_DOM_INFO)*NDOMAINS + struct.calcsize("4i")
+
+ # location of mmaped file, hard coded right now
+-SHM_FILE = "/tmp/xenq-shm"
++SHM_FILE = "/var/run/xenmon"
+
+ # format strings
+ TOTALS = 15*'' '' + "%6.2f%%" + 35*''
'' + "%6.2f%%"