Description of problem: a) in device_write(): add sentinel NUL byte, making sure that lspace.name will be NUL-terminated b) in compat_input() be keep it simple about the amounts of data we are copying.
Proposed upstream patch: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=cb79f1998d89821a4dbac47f59a46ee3fbbf3c61
Created attachment 314043 [details] Upstream patch for this issue
Eugene, the last two hunks can be applied to the code we have in 2.6.24.7-76. But the first three hunks are related to a code that is slightly different. I havo no problems in backporting a bit more of code, but I would like to know if it is necessary.
(In reply to comment #3) > Eugene, the last two hunks can be applied to the code we have in 2.6.24.7-76. > But the first three hunks are related to a code that is slightly different. I > have no problems in backporting a bit more of code, but I would like to know if > it is necessary. It is slightly different because of 2a79289e87f3b6487b5fd23c8569f32097057fb4. cb79f1998d89821a4dbac47f59a46ee3fbbf3c61 went in later to fix compat_input().
Created attachment 314237 [details] Patch modified by Eugene Teo, including the missing bits for -77 This is a slightly modified version of the patch described below. It is slightly different because of 2a79289e87f3b6487b5fd23c8569f32097057fb4. cb79f1998d89821a4dbac47f59a46ee3fbbf3c61 went in later to fix compat_input(). Eugene Teo backported the patch and a few needed bits in order to apply this patch to 2.6.24.7-77. -- Queued to -77
Verified that the patch in attachment https://bugzilla.redhat.com/attachment.cgi?id=314237 is implemented into the mrg-rt-2.6.24.7-81 kernel. (mrt-rt.git commit 28f423a1d6b4a09fedd8aa0a27fa873200f93281)
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2008-0857.html