Bug 665169

Summary: kexec: limit root to call kexec_load()
Product: Red Hat Enterprise Linux 6 Reporter: Eric Paris <eparis>
Component: kernelAssignee: Eric Paris <eparis>
Status: CLOSED ERRATA QA Contact: Han Pingtian <phan>
Severity: medium Docs Contact:
Priority: low    
Version: 6.1CC: amwang, bsarathy, llim, mjenner, phan, qcai, sgrubb
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: kernel-2.6.32-117.el6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-05-23 20:32:44 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 655920    

Description Eric Paris 2010-12-23 00:15:23 UTC 
sys_kexec_load currently checks CAP_SYS_BOOT.  CAP_SYS_BOOT is also used
to protect sys_boot.  But these operations are not exactly the same.
sys_boot is going to go back through the boot loader.  kexec_load actually
allows you to run any code you want in ring0.  This is more like
CAP_SYS_MODULE.  This patch requires having both to use sys_kexec_load()
Comment 4 Neil Horman 2011-01-03 15:28:57 UTC 
Triage assignment.  If you feel this bug doesn't belong to you, or that it cannot be handled in a timely fashion, please contact me for re-assignment
Comment 11 Aristeu Rozanski 2011-02-18 22:15:55 UTC 
Patch(es) available on kernel-2.6.32-117.el6
Comment 15 errata-xmlrpc 2011-05-23 20:32:44 UTC 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2011-0542.html