Debian Bug report logs - #310577
'kernel-patch-grsecurity2' does not apply to any current sarge kernel

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Francesco Paolo Lovergine <frankie@debian.org>

To: submit@bugs.debian.org

Subject: 'kernel-patch-grsecurity2' does not apply to any current sarge kernel

Date: Tue, 24 May 2005 14:20:42 +0200

Package: kernel-patch-grsecurity2
Version: 2.1.5-1
Severity: grave
	
Dear Laszlo Boszormenyi (GCS) 

As reported in http://people.debian.org/~frankie/kernel-patches-checks.txt, kernel-patch-grsecurity2 does not
apply clean to a current kernel-source. If you think this package is anyway useful at least with
an up-to-date vanilla kernel and sure that it applies properly, feel free to document this in the 
package and reduce the severity of this report, else this kernel-patch will be hinted for 
removing in sarge.

See also this ML thread about the issue:

http://lists.debian.org/debian-release/2005/05/msg01325.html

--
Francesco P. Lovergine

Message #10 received at 310577@bugs.debian.org (full text, mbox, reply):

From: Laszlo Boszormenyi <gcs@lsc.hu>

To: Francesco Paolo Lovergine <frankie@debian.org>, 310577@bugs.debian.org

Subject: Re: Bug#310577: 'kernel-patch-grsecurity2' does not apply to any current sarge kernel

Date: Tue, 24 May 2005 23:20:06 +0200

Hi Francesco again,

On Tue, 2005-05-24 at 14:20 +0200, Francesco Paolo Lovergine wrote:
> If you think this package is anyway useful at least with
> an up-to-date vanilla kernel and sure that it applies properly,
 Yes, but I will test again then just to be 101% sure.

> feel free to document this in the 
> package and reduce the severity of this report,
 Ouch! Somewhere the package installation of the warning is missed,
but it is in the package itself; see debian/README.* .
They need update, so I do not reduce the severity now, but maybe
will reduce it to important only. Anyway, will correct the READMEs.
The debconf warning is there by the way (debian/po/templates.pot).

>  else this kernel-patch will be hinted for 
> removing in sarge.
Please do not remove it now, will update the READMEs to be
up-to-date soon.

Regards,
Laszlo/GCS

Message #15 received at 310577@bugs.debian.org (full text, mbox, reply):

From: Francesco Paolo Lovergine <frankie@debian.org>

To: Laszlo Boszormenyi <gcs@lsc.hu>

Cc: Francesco Paolo Lovergine <frankie@debian.org>, 310577@bugs.debian.org

Subject: Re: Bug#310577: 'kernel-patch-grsecurity2' does not apply to any current sarge kernel

Date: Tue, 24 May 2005 23:32:22 +0200

On Tue, May 24, 2005 at 11:20:06PM +0200, Laszlo Boszormenyi wrote:
> Hi Francesco again,
> 
> On Tue, 2005-05-24 at 14:20 +0200, Francesco Paolo Lovergine wrote:
> > If you think this package is anyway useful at least with
> > an up-to-date vanilla kernel and sure that it applies properly,
>  Yes, but I will test again then just to be 101% sure.
> 
> > feel free to document this in the 
> > package and reduce the severity of this report,
>  Ouch! Somewhere the package installation of the warning is missed,
> but it is in the package itself; see debian/README.* .
> They need update, so I do not reduce the severity now, but maybe
> will reduce it to important only. Anyway, will correct the READMEs.
> The debconf warning is there by the way (debian/po/templates.pot).
> 
> >  else this kernel-patch will be hinted for 
> > removing in sarge.
> Please do not remove it now, will update the READMEs to be
> up-to-date soon.
> 

About that specific patch, the nice thing is that the nude patch applies
nicely to debian kernel source, but kernel-patch fails :-?

-- 
Francesco P. Lovergine

Message #20 received at 310577@bugs.debian.org (full text, mbox, reply):

From: Laszlo Boszormenyi <gcs@lsc.hu>

To: Francesco Paolo Lovergine <frankie@debian.org>, 310577@bugs.debian.org

Subject: Re: Bug#310577: 'kernel-patch-grsecurity2' does not apply to any current sarge kernel

Date: Wed, 25 May 2005 01:47:27 +0200

[Message part 1 (text/plain, inline)]

On Tue, 2005-05-24 at 23:32 +0200, Francesco Paolo Lovergine wrote:
> About that specific patch, the nice thing is that the nude patch applies
> nicely to debian kernel source, but kernel-patch fails :-?
 To which debian kernel source version? Please be more specific.
It won't apply to *any* 2.6.8 version as there were no upstream
release from that; major changes to the VM(?) forced them to rewrite
their patch magnificaly which took time (next upstream version was
for 2.6.10 if I am not mistaken).

Regards,
Laszlo/GCS

[signature.asc (application/pgp-signature, inline)]

Message #25 received at 310577@bugs.debian.org (full text, mbox, reply):

From: Francesco Paolo Lovergine <frankie@debian.org>

To: Laszlo Boszormenyi <gcs@lsc.hu>

Cc: Francesco Paolo Lovergine <frankie@debian.org>, 310577@bugs.debian.org

Subject: Re: Bug#310577: 'kernel-patch-grsecurity2' does not apply to any current sarge kernel

Date: Wed, 25 May 2005 08:45:31 +0200

On Wed, May 25, 2005 at 01:47:27AM +0200, Laszlo Boszormenyi wrote:
> On Tue, 2005-05-24 at 23:32 +0200, Francesco Paolo Lovergine wrote:
> > About that specific patch, the nice thing is that the nude patch applies
> > nicely to debian kernel source, but kernel-patch fails :-?
>  To which debian kernel source version? Please be more specific.
> It won't apply to *any* 2.6.8 version as there were no upstream
> release from that; major changes to the VM(?) forced them to rewrite
> their patch magnificaly which took time (next upstream version was
> for 2.6.10 if I am not mistaken).
> 

Mmm, right I probably tried it with sid sources for 2.6.11 for a project of mine...


-- 
Francesco P. Lovergine

Message #30 received at 310577@bugs.debian.org (full text, mbox, reply):

From: Steve Langasek <vorlon@debian.org>

To: 310577@bugs.debian.org

Subject: Re 'kernel-patch-grsecurity2' does not apply to any current sarge kernel

Date: Fri, 27 May 2005 15:38:39 -0700

[Message part 1 (text/plain, inline)]

severity 310577 important
thanks

If the package is still useful for sarge in its present form, then this bug
is not RC; the documentation does not need to be fixed for this to be the
case.

If you feel that the documentation should be updated for the release, please
be sure to upload to unstable soon, as we won't hold up the release for
this. :)

Thanks,
-- 
Steve Langasek
postmodern programmer

[signature.asc (application/pgp-signature, inline)]

Message #37 received at 310577-close@bugs.debian.org (full text, mbox, reply):

From: Laszlo Boszormenyi (GCS) <gcs@debian.hu>

To: 310577-close@bugs.debian.org

Subject: Bug#310577: fixed in kernel-patch-grsecurity2 2.1.5.1-1

Date: Tue, 31 May 2005 18:02:52 -0400

Source: kernel-patch-grsecurity2
Source-Version: 2.1.5.1-1

We believe that the bug you reported is fixed in the latest version of
kernel-patch-grsecurity2, which is due to be installed in the Debian FTP archive:

kernel-patch-grsecurity2_2.1.5.1-1.diff.gz
  to pool/main/k/kernel-patch-grsecurity2/kernel-patch-grsecurity2_2.1.5.1-1.diff.gz
kernel-patch-grsecurity2_2.1.5.1-1.dsc
  to pool/main/k/kernel-patch-grsecurity2/kernel-patch-grsecurity2_2.1.5.1-1.dsc
kernel-patch-grsecurity2_2.1.5.1-1_all.deb
  to pool/main/k/kernel-patch-grsecurity2/kernel-patch-grsecurity2_2.1.5.1-1_all.deb
kernel-patch-grsecurity2_2.1.5.1.orig.tar.gz
  to pool/main/k/kernel-patch-grsecurity2/kernel-patch-grsecurity2_2.1.5.1.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 310577@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Laszlo Boszormenyi (GCS) <gcs@debian.hu> (supplier of updated kernel-patch-grsecurity2 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sat, 28 May 2005 13:10:07 +0200
Source: kernel-patch-grsecurity2
Binary: kernel-patch-grsecurity2
Architecture: source all
Version: 2.1.5.1-1
Distribution: unstable
Urgency: medium
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.hu>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.hu>
Description: 
 kernel-patch-grsecurity2 - grsecurity kernel patch - new major upstream version
Closes: 304974 310577 311116
Changes: 
 kernel-patch-grsecurity2 (2.1.5.1-1) unstable; urgency=medium
 .
   * Update documentation for vanilla vs Debian kernel sources
     and really install README.2.4.2x (closes: #310577).
   * Correct spelling errors in README.Debian, thanks to Tommaso Moroni
     <moronito@debian.org> (closes: #304974).
   * Update the Japanese debconf translations, thanks to Hideki Yamane
     <henrich@samba.gr.jp> (closes: #311116).
   * Removed old 2.6.11.x patches as they apply to kernels with security
     bugs and updated the 2.1.5 release to apply 2.6.11.11 without line
     offsets.
   * Set urgency to reach Sarge sooner (if possible), discussed with
     Steve Langasek.
Files: 
 b65270c223303428b1907ad282f547ba 663 devel extra kernel-patch-grsecurity2_2.1.5.1-1.dsc
 81ccbdb3c8bce41de2619408a409ac11 2609857 devel extra kernel-patch-grsecurity2_2.1.5.1.orig.tar.gz
 15dae22ba2e23d78f1c58824bb95bf5d 10797 devel extra kernel-patch-grsecurity2_2.1.5.1-1.diff.gz
 6e53a9216bc07f6226ce7b869fe4e5a3 2444214 devel extra kernel-patch-grsecurity2_2.1.5.1-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFCnNzkMDatjqUaT90RAuHEAJ0WZSaHSdExDnOu5FfFqk1LeWWnSQCgsByZ
c6Cy2QW1h1tnH91sm7jzNxM=
=vY8c
-----END PGP SIGNATURE-----

Message #42 received at 310577@bugs.debian.org (full text, mbox, reply):

From: Oscon <oscon@vivamail.hu>

To: 310577@bugs.debian.org

Subject: grsecurity-2.1.5-2.4.27_debian-10.patch.gz

Date: Thu, 9 Jun 2005 21:28:27 +0200

[Message part 1 (text/plain, inline)]

Hi GCS!

I have a new "mixed", "debianised" 2.4.27-10 grsecurity2 patch.
This new patch work with gradm2 package (version 2.1.5).
 The grsecurity-2.0.1-2.4.27_debian-5.patch.gz (in grsecurity2 package / 
version 2.1.5 / ) is too old and contains security bug (RANDEXEC exploitable 
vulnerability - more information: http://secunia.com/advisories/14490/) , and 
old 2.4.27_debian-5 patch don't work with gradm2 (2.1.5).

my attachment is this new patch in "gz format".

Good luck!
Oscon

[grsecurity-2.1.5-2.4.27_debian-10.patch.gz (application/x-gzip, attachment)]

Send a report that this bug log contains spam.