[Acked] [CVE-2015-2925][Trusty][PATCH 0/2] Bind mount escape fixes
Andy Whitcroft
apw at canonical.com
Tue Oct 6 09:52:34 UTC 2015
On Mon, Oct 05, 2015 at 01:57:33PM +0100, Luis Henriques wrote:
> Following this email I am sending CVE-2015-2925 fix for Trusty. The fix
> includes commits:
>
> cde93be45a8a dcache: Handle escaped paths in prepend_path
> 397d425dc26d vfs: Test for and handle paths that are unreachable from their mnt_root
>
> The backports have been provided by the author in the stable mailing-list:
>
> http://permalink.gmane.org/gmane.linux.kernel.stable/151074
>
> Eric W. Biederman (2):
> dcache: Handle escaped paths in prepend_path
> vfs: Test for and handle paths that are unreachable from their
> mnt_root
>
> fs/dcache.c | 7 +++++++
> fs/namei.c | 31 ++++++++++++++++++++++++++++---
> 2 files changed, 35 insertions(+), 3 deletions(-)
Look good.
Acked-by: Andy Whitcroft <apw at canonical.com>
-apw
More information about the kernel-team
mailing list