[CVE-Review] Please review proposed patches for CVE-2010-3698

Stefan Bader stefan.bader at canonical.com
Fri Jan 21 20:09:27 UTC 2011

Since we are trying to get to a one CVE per week personal tackling mode,
I went ahead and had a go for one. Below is a little bzr cheat-sheet for
handling the tracker part (there is a readme in the tracker that explains
the fields a bit).

For CVE-2010-3698:
Dapper:		not-affected
Hardy:		pending		(Slightly more scary as I had to backport a
				 savesegment function from upstream to handle
				 the amd64 case. It compiles but should be
				 verified by testing.)
Karmic:		pending
Lucid:		released	(Came from upstream stable, err longterm.)
Maverick:	pending		(Needed a bit of tweak as a later reorder
				 patch is in here that touches same code.)
Natty:		released


--- bzr cheatsheet ---

The selection page:


To create the branch:
* bzr branch $KTEAM

In tracker branch (this syncing should probably be scripted):
* bzr pull $KTEAM
* bzr commit -m "Saving local changes"
* bzr push $KTEAM
* bzr missing -q --theirs-only --line $STEAM | tee ../msg
  If ../msg is not empty
  * bzr merge $STEAM
  * bzr commit -m "$(cat ../msg)"
  * bzr push $KTEAM

After changing the anything in an active/CVE-* file
!! WARNING: bzr includes *all* files changed in the branch dir to the commit
* bzr commit -m "<this is my message to the world>"
* bzr push $KTEAM

Useful for cleaning up previous commit (commit undone, changes not)
* bzr uncommit

More information about the kernel-team mailing list