Bug#283325: kernel-source-2.6.9: DVD burning broken since 2.6.8; apply cddvd-cmdfilter-drop.patch

To: William Ballard <nospam_40811@alltel.net>, 283325@bugs.debian.org
Cc: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#283325: kernel-source-2.6.9: DVD burning broken since 2.6.8; apply cddvd-cmdfilter-drop.patch
From: Christoph Hellwig <hch@lst.de>
Date: Tue, 30 Nov 2004 09:36:23 +0100
Message-id: <[🔎] 20041130083623.GA16601@lst.de>
Reply-to: Christoph Hellwig <hch@lst.de>, 283325@bugs.debian.org
In-reply-to: <[🔎] E1CYIBR-0004gG-00@localhost.localdomain>
References: <[🔎] E1CYIBR-0004gG-00@localhost.localdomain>

>  	if (copy_from_user(cmd, hdr->cmdp, hdr->cmd_len))
>  		return -EFAULT;
> -	if (verify_command(file, cmd))
> -		return -EPERM;

This opens a big security hole.  I wonder whether the person creating
this patch just played trial and error with a bogus application or was
smoking serious crack.

Reply to:

Follow-Ups:
- Bug#283325: kernel-source-2.6.9: DVD burning broken since 2.6.8; apply cddvd-cmdfilter-drop.patch
  - From: William Ballard <nospam_40811@alltel.net>

References:
- Bug#283325: kernel-source-2.6.9: DVD burning broken since 2.6.8; apply cddvd-cmdfilter-drop.patch
  - From: William Ballard <nospam_40811@alltel.net>

Prev by Date: Bug#282269: Which problems did you observe without -ffreestanding?
Next by Date: Re: creating kernel udebs from kernel-source
Previous by thread: Bug#283325: kernel-source-2.6.9: DVD burning broken since 2.6.8; apply cddvd-cmdfilter-drop.patch
Next by thread: Bug#283325: kernel-source-2.6.9: DVD burning broken since 2.6.8; apply cddvd-cmdfilter-drop.patch
Index(es):
- Date
- Thread