[Acked] [CVE-2015-2925][Precise][PATCH 0/2] Bind mount escape fixes
Andy Whitcroft
apw at canonical.com
Tue Oct 6 09:43:37 UTC 2015
On Mon, Oct 05, 2015 at 01:57:17PM +0100, Luis Henriques wrote:
> Following this email I am sending CVE-2015-2925 fix for Precise. The fix
> includes commits:
>
> cde93be45a8a dcache: Handle escaped paths in prepend_path
> 397d425dc26d vfs: Test for and handle paths that are unreachable from their mnt_root
>
> The backports have been provided by the author in the stable mailing-list:
>
> http://permalink.gmane.org/gmane.linux.kernel.stable/151074
>
> Eric W. Biederman (2):
> dcache: Handle escaped paths in prepend_path
> vfs: Test for and handle paths that are unreachable from their
> mnt_root
Look good if we have a test case for this that would be nice to verify
with.
Acked-by: Andy Whitcroft <apw at canonical.com>
-apw
More information about the kernel-team
mailing list