LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Book review: Open Advice

Linux support for ARM big.LITTLE

LWN.net Weekly Edition for February 9, 2012

XBMC 11 "Eden"

LWN.net Weekly Edition for February 2, 2012

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Stable kernel 2.6.25.11

Stable kernel 2.6.25.11

Posted Jul 14, 2008 16:11 UTC (Mon) by bfields (subscriber, #19510)
In reply to: Stable kernel 2.6.25.11 by PaXTeam
Parent article: Stable kernel 2.6.25.11

you might want to be careful with pagemap: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-... . incidentally, that commit fixes security bugs without a corresponding stable commit, not to mention CVE.

You could try replying to the original thread (or starting a new thread if it didn't go over lkml originally), and adding a cc: to stable@kernel.org. That's probably all it would take to get it into stable, if it meets their criteria. I don't know how you go about getting CVE's.

Other possible ways you could help:

  • Make sure patches get forwarded to the proper people, as above. You already seem to be doing the difficult part (scanning the changelogs for such patches); an extra email shouldn't take you much more time.
  • Write to (or gather some references to) criteria for deciding whether something is a security bug and what it its impact is. Ideally, get some agreement on it and get it submitted to Documentation/.
  • Post summaries of the scope and impact of security bugs in each stable release, as a followup to the email announcing the stable release.

(Log in to post comments)

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds