another patch added to queue

diff --git a/queue-2.6.22/selinux-clear-parent-death-signal-on-sid-transitions.patch b/queue-2.6.22/selinux-clear-parent-death-signal-on-sid-transitions.patch
new file mode 100644 (file)
index 0000000..baddd99
--- /dev/null
+++ b/queue-2.6.22/selinux-clear-parent-death-signal-on-sid-transitions.patch
@@ -0,0 +1,33 @@
+From 4ac212ad4e8fafc22fa147fc255ff5fa5435cf33 Mon Sep 17 00:00:00 2001
+From: Stephen Smalley <sds@tycho.nsa.gov>
+Date: Wed, 29 Aug 2007 08:51:50 -0400
+Subject: [PATCH] SELinux: clear parent death signal on SID transitions
+
+From: Stephen Smalley <sds@tycho.nsa.gov>
+
+commit 4ac212ad4e8fafc22fa147fc255ff5fa5435cf33 upstream.
+
+Clear parent death signal on SID transitions to prevent unauthorized
+signaling between SIDs.
+
+Signed-off-by:  Stephen Smalley <sds@tycho.nsa.gov>
+Acked-by: Eric Paris <eparis@parisplace.org>
+Signed-off-by: James Morris <jmorris@localhost.localdomain>
+Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
+
+---
+ security/selinux/hooks.c |    3 +++
+ 1 file changed, 3 insertions(+)
+
+--- a/security/selinux/hooks.c
++++ b/security/selinux/hooks.c
+@@ -1906,6 +1906,9 @@ static void selinux_bprm_post_apply_cred
+               spin_unlock_irq(&current->sighand->siglock);
+       }
+ 
++      /* Always clear parent death signal on SID transitions. */
++      current->pdeath_signal = 0;
++
+       /* Check whether the new SID can inherit resource limits
+          from the old SID.  If not, reset all soft limits to
+          the lower of the current task's hard limit and the init

diff --git a/queue-2.6.22/series b/queue-2.6.22/series
index 18cc10cd32ff3c0e60f22c5405c2077e5ec2210b..4f26007fb0fe81d61db843c4e40d4bb9030fd30d 100644 (file)
--- a/queue-2.6.22/series
+++ b/queue-2.6.22/series
@@ -8,3 +8,4 @@ i2c-algo-bit-read-block-data-bugfix.patch
 nlm-fix-a-circular-lock-dependency-in-lockd.patch
 fix-smp-poweroff-hangs.patch
 fix-timer_stats-printout-of-events-sec.patch
+selinux-clear-parent-death-signal-on-sid-transitions.patch