Bug 633178

Summary: [RHEL 5.6] xfs: fix untrusted inode lookup backport botch
Product: Red Hat Enterprise Linux 5 Reporter: Dave Chinner <dchinner>
Component: kernelAssignee: Red Hat Kernel Manager <kernel-mgr>
Status: CLOSED DUPLICATE QA Contact: Red Hat Kernel QE team <kernel-qe>
Severity: medium Docs Contact:
Priority: high    
Version: 5.6CC: dhoward, jpirko
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2010-09-13 11:31:03 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 624862, 624923    

Description Dave Chinner 2010-09-13 05:37:14 UTC 
Description of problem:

RHEL 5.x has a different open-by-handle path to rhel6/mainline and so the backport of the untrusted inode lookup patches failed to update this path. Hence local handle lookups were not being checked correctly. This was not picked up during initial testing as the tests are affected by timing and not always guarantee to fail.


Version-Release number of selected component (if applicable):

rhel 5.6

How reproducible:

Reproduced in QA. See bug 624366.

Additional info:

The fixes for CVE-2010-2943 et al are not correct or complete without this bug being fixed.