ACK: [CVE-2012-0038] ACL overflow oops
Stefan Bader
stefan.bader at canonical.com
Wed Jan 18 13:14:38 UTC 2012
On 18.01.2012 14:10, Stefan Bader wrote:
> On 18.01.2012 12:28, Andy Whitcroft wrote:
>> CVE-2012-0038
>> integer overflow in the ACL handling code, which could further
>> lead to heap-based buffer overflow via a crafted filesystem.
>>
>> Fixes for this have hit lucid, oneiric and precise via upstream and stable.
>> Hardy did not have this code. Following this email is a set of patches
>> for maverick, maverick/ti-omap4, natty and natty/ti-omap4. These are
>> cherry-picks from mainline (though allowing for renames).
>>
>> Proposing for maverick, maverick/ti-omap4, natty and natty/ti-omap4.
>>
>> -apw
>>
> Looks good
>
No, I don't think this helps to get it quicker into the kernel. Just Thunderird
did confuse me by resorting the mails while I was not looking...
More information about the kernel-team
mailing list