Description of problem: unchecked 'len' value in sd.c can lead to data corruption. see: http://www.kernel.org/git/?p=linux/kernel/git/chrisw/linux-2.6.15.y.git;a=commitdiff;h=ed26c7781107e4d8fd0c654459e61b81096c4ff4 Version-Release number of selected component (if applicable): How reproducible: h/w errors can lead to this condition, maybe other ways too? Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
This request was evaluated by Red Hat Product Management for inclusion in a Red Hat Enterprise Linux maintenance release. Product Management has requested further review of this request by Red Hat Engineering, for potential inclusion in a Red Hat Enterprise Linux Update release for currently deployed products. This request is not yet committed for inclusion in an Update release.
Committed in 78.15.EL . RPMS are available at http://people.redhat.com/vgoyal/rhel4/
It is a backporting from the main stream. The patch has been included in 2.6.9-89.EL:linux-2.6.9-scsi-harden-against-possible-data-corrupter.patch. Will change the status to VERIFIED. Thanks.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2009-1024.html
Clearing stale needinfo on CLOSED bug.