Bug #140784 “auditctl: Error sending add rule data request (Inva...” : Bugs : audit package : Debian

Revision history for this message

Tyler Mitchell (fission) wrote on 2007-11-06:

#1

I am also seeing this behaviour. I see a [kauditd] and /sbin/auditd running, yet none of the examples actually seem to work.

Revision history for this message

Andrew Whyte (andrew-whyte) wrote on 2007-11-30:

#2

Same here:

$ sudo service auditd status
=> * auditd is running.

$ sudo auditctl -w /etc/passwd
=> Error sending add rule data request (Invalid argument)

Has anyone found a solution? Apparently auditing has moved into the kernel, but I can't see any evidence of this in Gutsy. As it is, the "auditd" package is pretty useless...

Revision history for this message

Chris Bozic (cbozic) wrote on 2007-11-30: Re: [Bug 140784] Re: auditctl: Error sending add rule data request (Invalid argument)

#3

To the best of my knowledge, the auditd package only seems to work when
using AppArmor. However, using regular auditd configurations like those
mentioned in previous posts do not work. That is unfortunate since AppArmor
doesn't meet my auditing requirements and it appears (from what I've read
about it) that auditd should.

Chris Bozic

On Nov 30, 2007 6:12 AM, Andrew Whyte <email address hidden> wrote:

> Same here:
>
> $ sudo service auditd status
> => * auditd is running.
>
> $ sudo auditctl -w /etc/passwd
> => Error sending add rule data request (Invalid argument)
>
> Has anyone found a solution? Apparently auditing has moved into the
> kernel, but I can't see any evidence of this in Gutsy. As it is, the
> "auditd" package is pretty useless...
>
> --
> auditctl: Error sending add rule data request (Invalid argument)
> https://bugs.launchpad.net/bugs/140784
> You received this bug notification because you are a direct subscriber
> of the bug.
>

Mathias Gug (mathiaz) on 2008-01-05

Changed in audit:
status:	New → Unknown

Bug Watch Updater (bug-watch-updater) on 2008-01-05

Changed in audit:
status:	Unknown → New

Revision history for this message

William Brennan (william-c-brennan) wrote on 2008-01-09: Re: auditctl: Error sending add rule data request (Invalid argument)

#4

I'm observing this problem as well (with the Gutsy version of the auditd package, 1.5.4). I'm unable to add any auditing rules via "auditctl". It's not evident whether this is a problem with the "auditd" demon or "auditctl".

Surprisingly, this problem does not seem to be happening to the Red Hat users, because there are no complaints on the auditd forum on Red Hat, from where this package originates. The problem only seems to be occurring for Debian/Ubuntu users. This suggests it may be the result of a dependency problem, where Ubuntu is using a different package set than the Red Hat folks. But that's just a guess.

I tried installing a more recent version of the auditd package (1.6.4), along with the dependent packages (e.g., libc), and continued having the same problem.

If anyone has any insight into why this is a problem in Ubuntu, and not Red Hat, I would appreciate help.

BIll Brennan

Revision history for this message

Mathias Gug (mathiaz) wrote on 2008-01-09:

#5

The kernel config should have the CONFIG_AUDITSYSCALL option set (see https://www.redhat.com/archives/linux-audit/2008-January/msg00015.html).

Changed in audit:
importance:	Undecided → Medium
status:	New → Triaged

Revision history for this message

Mathias Gug (mathiaz) wrote on 2008-01-11:

#6

As mentioned in this post, https://www.redhat.com/archives/linux-audit/2008-January/msg00029.html, the above solution fixed this bug. Thus marking this bug Invalid for the audit package.

Changed in audit:
status:	Triaged → Invalid

Revision history for this message

William Brennan (william-c-brennan) wrote on 2008-01-11:

#7

As recently discovered, the Ubuntu kernel, as supplied, makes it impossible to use the auditd package. So, Mathais Gug marked this auditd bug as invalid, since the auditd package is really not responsible for the problems we encountered.

However, there is still a bug within the entire Ubuntu system, as auditing will not work with the supplied system (current Kernel + auditd package).

So is it now appropriate to mark this as a bug in the kernel configuration? Is that next step in Ubuntu civic duty?

Revision history for this message

Leann Ogasawara (leannogasawara) wrote on 2008-01-14:

#8

Reassigning to the kernel team.

Changed in linux:
assignee:	nobody → ubuntu-kernel-team
importance:	Undecided → Medium
status:	New → Triaged

Leann Ogasawara (leannogasawara) on 2008-01-14

Changed in linux:
assignee:	ubuntu-kernel-team → stefan-bader-canonical
status:	Triaged → In Progress

Revision history for this message

Stefan Bader (smb) wrote on 2008-01-15:

#9

Fix commited as 9aac2d6a3553fc4581d69ce6337865847eddde57.

Changed in linux:
status:	In Progress → Fix Committed

Revision history for this message

Tim Gardner (timg-tpi) wrote on 2008-01-17:

#10

Should this config option also be set in the -rt and -lpia flavours? I think it makes sense for -rt at least.

Revision history for this message

Stefan Bader (smb) wrote on 2008-01-23:

#11

Coonfig option has been enabled for those custom builds, too.

Revision history for this message

Launchpad Janitor (janitor) wrote on 2008-01-24:

#12

Download full text (20.1 KiB)

This bug was fixed in the package linux - 2.6.24-5.8

---------------
linux (2.6.24-5.8) hardy; urgency=low

[Alessio Igor Bogani]

* rt: Update to 2.6.24-rc8-rt1
* rt: Update configuration files

[Amit Kucheria]

  * Asix: fix breakage caused in 2.6.24-rc7
  * Add CONFIG_CPUSETS to server-related flavours
    - LP: #182434

[Chuck Short]

* SAUCE: ata: blacklist FUJITSU MHW2160BH PL
- LP: #175834

[Kees Cook]

* AppArmor: updated patch series to upstream SVN 1079.

[Soren Hansen]

* Updated configs to enable virtio stuff Ignore: yes

[Stefan Bader]

  * Enabled CONFIG_BSD_PROCESS_ACCT=y for sparc.
    - LP: #176587
  * Enable CONFIG_AUDITSYSCALL=y.
    - LP: #140784
  * Added CONFIG_AUDIT_SYSCALL=y to custom lpia(compat)
  * Enabled CONFIG_HUGETLBFS=y for i386/server amd64/server and ia64.
  * Lower priority of pnpacpi resource messages to warning level.
    - LP: #159241
  * Fix the messed up message level of pnpacpi parser.

[Tim Gardner]

  * Start new release, bump ABI to -5
  * Disabled iwlwifi preperatory to moving it to l-u-m.
  * Enabled CONFIG_USB_SERIAL_KEYSPAN
  * Disabled CONFIG_CGROUPS.
  * Virtio config settings for -rt.
  * Re-enable IWLWIFI in the kernel.
  * Fixed -rt saa7134-core.c FTBS

[Upstream Kernel Changes]

  * Input: Handle EV_PWR type of input caps in input_set_capability.
  * Input: jornada680_kbd - fix default keymap
  * increase PNP_MAX_PORT to 40 from 24
  * sched: fix gcc warnings
  * leds: Fix leds_list_lock locking issues
  * leds: Fix locomo LED driver oops
  * x86: fix asm-x86/byteorder.h for userspace export
  * x86: fix asm-x86/msr.h for user-space export
  * ACPI: EC: Enable boot EC before bus_scan
  * ACPI: Make sysfs interface in ACPI power optional.
  * fix lguest rmmod "bad pgd"
  * slub: provide /proc/slabinfo
  * [POWERPC] Fix build failure on Cell when CONFIG_SPU_FS=y
  * slub: register slabinfo to procfs
  * [SCSI] scsi_sysfs: restore prep_fn when ULD is removed
  * Unify /proc/slabinfo configuration
  * scsi: revert "[SCSI] Get rid of scsi_cmnd->done"
  * restrict reading from /proc/<pid>/maps to those who share ->mm or can
    ptrace pid
  * Fix kernel/ptrace.c compile problem (missing "may_attach()")
  * hwmon: (w83627ehf) Be more careful when changing VID input level
  * NFS: Fix a possible Oops in fs/nfs/super.c
  * NFSv4: Fix circular locking dependency in nfs4_kill_renewd
  * NFS: add newline to kernel warning message in auth_gss code
  * NFSv4: nfs4_open_confirm must not set the open_owner as confirmed on
    error
  * NFSv4: Fix open_to_lock_owner sequenceid allocation...
  * gameport: don't export functions that are static inline
  * Input: spitzkbd - fix suspend key handling
  * Input: pass EV_PWR events to event handlers
  * [ARM] 4735/1: Unbreak pxa25x suspend/resume
  * IB/srp: Fix list corruption/oops on module reload
  * Console is utf-8 by default
  * [IA64] Update Altix BTE error return status patch
  * [IA64] Update Altix nofault code
  * [X25]: Add missing x25_neigh_put
  * [XFRM]: Do not define km_migrate() if !CONFIG_XFRM_MIGRATE
  * [CASSINI]: Fix endianness bug.
  * [CASSINI]: Revert 'dont touch page_count'.
  * [CASSINI]: Program parent Inte...

This bug was fixed in the package linux - 2.6.24-5.8

---------------
linux (2.6.24-5.8) hardy; urgency=low

[Alessio Igor Bogani]

* rt: Update to 2.6.24-rc8-rt1
  * rt: Update configuration files

[Amit Kucheria]

* Asix: fix breakage caused in 2.6.24-rc7
  * Add CONFIG_CPUSETS to server-related flavours
    - LP: #182434

[Chuck Short]

* SAUCE: ata: blacklist FUJITSU MHW2160BH PL
    - LP: #175834

[Kees Cook]

* AppArmor: updated patch series to upstream SVN 1079.

[Soren Hansen]

* Updated configs to enable virtio stuff Ignore: yes

[Stefan Bader]

* Enabled CONFIG_BSD_PROCESS_ACCT=y for sparc.
    - LP: #176587
  * Enable CONFIG_AUDITSYSCALL=y.
    - LP: #140784
  * Added CONFIG_AUDIT_SYSCALL=y to custom lpia(compat)
  * Enabled CONFIG_HUGETLBFS=y for i386/server amd64/server and ia64.
  * Lower priority of pnpacpi resource messages to warning level.
    - LP: #159241
  * Fix the messed up message level of pnpacpi parser.

[Tim Gardner]

* Start new release, bump ABI to -5
  * Disabled iwlwifi preperatory to moving it to l-u-m.
  * Enabled CONFIG_USB_SERIAL_KEYSPAN
  * Disabled CONFIG_CGROUPS.
  * Virtio config settings for -rt.
  * Re-enable IWLWIFI in the kernel.
  * Fixed -rt saa7134-core.c FTBS

[Upstream Kernel Changes]

* Input: Handle EV_PWR type of input caps in input_set_capability.
  * Input: jornada680_kbd - fix default keymap
  * increase PNP_MAX_PORT to 40 from 24
  * sched: fix gcc warnings
  * leds: Fix leds_list_lock locking issues
  * leds: Fix locomo LED driver oops
  * x86: fix asm-x86/byteorder.h for userspace export
  * x86: fix asm-x86/msr.h for user-space export
  * ACPI: EC: Enable boot EC before bus_scan
  * ACPI: Make sysfs interface in ACPI power optional.
  * fix lguest rmmod "bad pgd"
  * slub: provide /proc/slabinfo
  * [POWERPC] Fix build failure on Cell when CONFIG_SPU_FS=y
  * slub: register slabinfo to procfs
  * [SCSI] scsi_sysfs: restore prep_fn when ULD is removed
  * Unify /proc/slabinfo configuration
  * scsi: revert "[SCSI] Get rid of scsi_cmnd->done"
  * restrict reading from /proc/<pid>/maps to those who share ->mm or can
    ptrace pid
  * Fix kernel/ptrace.c compile problem (missing "may_attach()")
  * hwmon: (w83627ehf) Be more careful when changing VID input level
  * NFS: Fix a possible Oops in fs/nfs/super.c
  * NFSv4: Fix circular locking dependency in nfs4_kill_renewd
  * NFS: add newline to kernel warning message in auth_gss code
  * NFSv4: nfs4_open_confirm must not set the open_owner as confirmed on
    error
  * NFSv4: Fix open_to_lock_owner sequenceid allocation...
  * gameport: don't export functions that are static inline
  * Input: spitzkbd - fix suspend key handling
  * Input: pass EV_PWR events to event handlers
  * [ARM] 4735/1: Unbreak pxa25x suspend/resume
  * IB/srp: Fix list corruption/oops on module reload
  * Console is utf-8 by default
  * [IA64] Update Altix BTE error return status patch
  * [IA64] Update Altix nofault code
  * [X25]: Add missing x25_neigh_put
  * [XFRM]: Do not define km_migrate() if !CONFIG_XFRM_MIGRATE
  * [CASSINI]: Fix endianness bug.
  * [CASSINI]: Revert 'dont touch page_count'.
  * [CASSINI]: Program parent Intel31154 bridge when necessary.
  * [CASSINI]: Set skb->truesize properly on receive packets.
  * [CASSINI]: Fix two obvious NAPI bugs.
  * [CASSINI]: Bump driver version and release date.
  * [INET]: Fix netdev renaming and inet address labels
  * [CONNECTOR]: Return proper error code in cn_call_callback()
  * [ISDN] i4l: 'NO CARRIER' message lost after ldisc flush
  * [ISDN]: i4l: Fix DLE handling for i4l-audio
  * fix: using joysticks in 32 bit applications on 64 bit systems
  * [ARM] 4691/1: add missing i2c_board_info struct for at91rm9200
  * hda_intel suspend latency: shorten codec read
  * CPU hotplug: fix cpu_is_offline() on !CONFIG_HOTPLUG_CPU
  * Linux 2.6.24-rc7
  * sh: Fix argument page dcache flushing regression.
  * V4L/DVB (6944a): Fix Regression VIDIOCGMBUF ioctl hangs on bttv driver
  * V4L/DVB (6916): ivtv: udelay has to be changed *after* the eeprom was
    read, not before
  * [MIPS] Move inclusing of kernel/time/Kconfig menu to appropriate place
  * [MIPS] Alchemy: Fix use of __init code bug exposed by modpost warning
  * [MIPS] Fix IP32 breakage
  * [MIPS] Assume R4000/R4400 newer than 3.0 don't have the mfc0 count bug
  * [MIPS] Fix CONFIG_BOOT_RAW.
  * ACPI: Reintroduce run time configurable max_cstate for !CPU_IDLE case
  * core dump: real_parent ppid
  * acct: real_parent ppid
  * IB/mlx4: Fix value of pkey_index in QP1 completions
  * IB/srp: Release transport before removing host
  * x86: fix do_fork_idle section mismatch
  * spi_bitbang: always grab lock with irqs blocked
  * fat: optimize fat_count_free_clusters()
  * KEYS: fix macro
  * md: fix data corruption when a degraded raid5 array is reshaped
  * xip: fix get_zeroed_page with __GFP_HIGHMEM
  * eCryptfs: fix dentry handling on create error, unlink, and inode
    destroy
  * vmcoreinfo: add the array length of "free_list" for filtering free
    pages
  * dmi-id: fix for __you_cannot_kmalloc_that_much failure
  * snd_mixer_oss_build_input(): fix for __you_cannot_kmalloc_that_much
    failure with gcc-3.2
  * Fix crash with FLAT_MEMORY and ARCH_PFN_OFFSET != 0
  * hfs: handle more on-disk corruptions without oopsing
  * pl2303: Fix mode switching regression
  * futex: Prevent stale futex owner when interrupted/timeout
  * [NIU]: Fix slowpath interrupt handling.
  * [NIU]: Missing ->last_rx update.
  * [NIU]: Fix potentially stuck TCP socket send queues.
  * [NIU]: Update driver version and release date.
  * [IPV4] raw: Strengthen check on validity of iph->ihl
  * [IPV4] ipconfig: Fix regression in ip command line processing
  * [NET]: Fix netx-eth.c compilation.
  * [METH]: Fix MAC address handling.
  * [TULIP]: NAPI full quantum bug.
  * [ATM]: [nicstar] delay irq setup until card is configured
  * [SCTP]: Fix the name of the authentication event.
  * [SCTP]: Correctly handle AUTH parameters in unexpected INIT
  * [SCTP]: Add back the code that accounted for FORWARD_TSN parameter in
    INIT.
  * [IRDA]: irda_create() nuke user triggable printk
  * b43: Fix rxheader channel parsing
  * [NET]: Do not grab device reference when scheduling a NAPI poll.
  * [NET]: Add NAPI_STATE_DISABLE.
  * [NET]: Do not check netif_running() and carrier state in ->poll()
  * ssb: Fix probing of PCI cores if PCI and PCIE core is available
  * mac80211: return an error when SIWRATE doesn't match any rate
  * [NETXEN]: Fix ->poll() done logic.
  * [NET]: Fix drivers to handle napi_disable() disabling interrupts.
  * [NET]: Stop polling when napi_disable() is pending.
  * [NET]: Make ->poll() breakout consistent in Intel ethernet drivers.
  * [NET] Intel ethernet drivers: update MAINTAINERS
  * [NET]: kaweth was forgotten in msec switchover of usb_start_wait_urb
  * [IPV4] ROUTE: ip_rt_dump() is unecessary slow
  * [NET]: Clone the sk_buff 'iif' field in __skb_clone()
  * [LRO] Fix lro_mgr->features checks
  * [NET]: mcs7830 passes msecs instead of jiffies to usb_control_msg
  * [FORCEDETH]: Fix reversing the MAC address on suspend.
  * [XFRM]: xfrm_algo_clone() allocates too much memory
  * [SOCK]: Adds a rcu_dereference() in sk_filter
  * [CONNECTOR]: Don't touch queue dev after decrement of ref count.
  * [IPV6]: IPV6_MULTICAST_IF setting is ignored on link-local connect()
  * [ATM]: Check IP header validity in mpc_send_packet
  * show_task: real_parent
  * [SCSI] qla1280: fix 32 bit segment code
  * [NIU]: Support for Marvell PHY
  * [NEIGH]: Fix race between neigh_parms_release and neightbl_fill_parms
  * [IPV4] ROUTE: fix rcu_dereference() uses in /proc/net/rt_cache
  * [AX25]: Kill user triggable printks.
  * [ARM] pxa: silence warnings from cpu_is_xxx() macros
  * [POWERPC] efika: add phy-handle property for fec_mpc52xx
  * [ARM] vfp: fix fuitod/fsitod instructions
  * [CRYPTO] padlock: Fix alignment fault in aes_crypt_copy
  * rt2x00: Allow rt61 to catch up after a missing tx report
  * rt2x00: Corectly initialize rt2500usb MAC
  * rt2x00: Put 802.11 data on 4 byte boundary
  * NFSv4: Give the lock stateid its own sequence queue
  * sata_qstor: use hardreset instead of softreset
  * libata-sff: PCI IRQ handling fix
  * pata_pdc202xx_old: Further fixups
  * pata_ixp4xx_cf: fix compilation introduced by ata_port_desc()
    conversion
  * libata-pmp: 4726 hates SRST
  * libata-pmp: propagate timeout to host link
  * libata: don't normalize UNKNOWN to NONE after reset
  * Update kernel parameter document for libata DMA mode setting knobs.
  * sata_sil24: prevent hba lockup when pass-through ATA commands are used
  * ide: workaround suspend bug for ACPI IDE
  * ide: fix cable detection for SATA bridges
  * trm290: do hook dma_host_{on,off} methods (take 2)
  * libata and starting/stopping ATAPI floppy devices
  * ACPI : Not register gsi for PCI IDE controller in legacy mode
  * ACPICA: fix acpi_serialize hang regression
  * sh: Force __access_ok() to obey address space limit.
  * [AX25] af_ax25: Possible circular locking.
  * ACPI: apply quirk_ich6_lpc_acpi to more ICH8 and ICH9
  * [POWERPC] Fix CPU hotplug when using the SLB shadow buffer
  * [BLUETOOTH]: rfcomm tty BUG_ON() code fix
  * [BLUETOOTH]: Always send explicit hci_ll wake-up acks.
  * [DECNET] ROUTE: fix rcu_dereference() uses in /proc/net/decnet_cache
  * [VLAN]: nested VLAN: fix lockdep's recursive locking warning
  * [MACVLAN]: Prevent nesting macvlan devices
  * [NETFILTER]: ip6t_eui64: Fixes calculation of Universal/Local bit
  * [NETFILTER]: xt_helper: Do not bypass RCU
  * [XFS] fix unaligned access in readdir
  * Don't blatt first element of prv in sg_chain()
  * loop: fix bad bio_alloc() nr_iovec request
  * block: fix blktrace timestamps
  * blktrace: kill the unneeded initcall
  * V4L/DVB (6999): ivtv: stick to udelay=10 after all
  * V4L/DVB (7001): av7110: fix section mismatch
  * [MIPS] Wrong CONFIG option prevents setup of DMA zone.
  * [MIPS] pnx8xxx: move to clocksource
  * [MIPS] Malta: Fix software reset on big endian
  * [MIPS] Lasat: Fix built in separate object directory.
  * [MIPS] Replace 40c7869b693b18412491fdcff64682215b739f9e kludge
  * Pull bugzilla-5637 into release branch
  * Pull bugzilla-8171 into release branch
  * Pull bugzilla-8973 into release branch
  * PM: ACPI and APM must not be enabled at the same time
  * Pull bugzilla-9194 into release branch
  * Pull bugzilla-9494 into release branch
  * Pull bugzilla-9535 into release branch
  * Pull bugzilla-9627 into release branch
  * Pull bugzilla-9683 into release branch
  * IDE: terminate ACPI DMI list
  * cache invalidation error for buffered write
  * ps3fb: prevent use after free of fb_info
  * ps3fb: fix deadlock on kexec()
  * [NETFILTER]: bridge: fix double POST_ROUTING invocation
  * xircom_cb endianness fixes
  * de4x5 fixes
  * endianness noise in tulip_core
  * netxen: update MAINTAINERS
  * netxen: update driver version
  * netxen: stop second phy correctly
  * netxen: optimize tx handling
  * netxen: fix byte-swapping in tx and rx
  * 3c509: PnP resource management fix
  * Fixed a small typo in the loopback driver
  * ip1000: menu location change
  * r8169: fix missing loop variable increment
  * [usb netdev] asix: fix regression
  * fs_enet: check for phydev existence in the ethtool handlers
  * Use access mode instead of open flags to determine needed permissions
  * sky2: large memory workaround.
  * sky2: remove check for PCI wakeup setting from BIOS
  * spidernet MAINTAINERship update
  * pnpacpi: print resource shortage message only once
  * Pull bugzilla-9535 into release branch
  * [SPARC]: Make gettimeofday() monotonic again.
  * [SPARC64]: Fix build with SPARSEMEM_VMEMMAP disabled.
  * remove task_ppid_nr_ns
  * knfsd: Allow NFSv2/3 WRITE calls to succeed when krb5i etc is used.
  * Input: improve Kconfig help entries for HP Jornada devices
  * [TOKENRING]: rif_timer not initialized properly
  * modules: de-mutex more symbol lookup paths in the module code
  * w1: decrement slave counter only in ->release() callback
  * Kick CPUS that might be sleeping in cpus_idle_wait
  * TPM: fix suspend and resume failure
  * MAINTAINERS: email update and add missing entry
  * quicklists: Only consider memory that can be used with GFP_KERNEL
  * macintosh: fix fabrication of caplock key events
  * scsi/qla2xxx/qla_os.c section fix
  * cciss: section mismatch
  * advansys: fix section mismatch warning
  * hugetlbfs: fix quota leak
  * s3c2410fb: fix incorrect argument type in resume function
  * CRIS: define __ARCH_WANT_SYS_RT_SIGSUSPEND in unistd.h for CRIS
  * CRIS v10: correct do_signal to fix oops and clean up signal handling in
    general
  * CRIS v10: kernel/time.c needs to include linux/vmstat.h to compile
  * uvesafb: fix section mismatch warnings
  * CRIS v10: driver for ds1302 needs to include cris-specific i2c.h
  * OSS msnd: fix array overflows
  * i2c-omap: Fix NULL pointer dereferencing
  * i2c: Spelling fixes
  * i2c: Driver IDs are optional
  * i2c-sibyte: Fix an error path
  * fix the "remove task_ppid_nr_ns" commit
  * [MIPS] Kconfig fixes for BCM47XX platform
  * [MIPS] Cobalt: Fix ethernet interrupts for RaQ1
  * [MIPS] Cobalt: Qube1 has no serial port so don't use it
  * [MIPS] Cacheops.h: Fix typo.
  * ata_piix: ignore ATA_DMA_ERR on vmware ich4
  * sata_sil24: fix stupid typo
  * sata_sil24: freeze on non-dev errors reported via CERR
  * libata: relocate sdev->manage_start_stop configuration
  * [POWERPC] Fix boot failure on POWER6
  * x86: fix boot crash on HIGHMEM4G && SPARSEMEM
  * x86: asm-x86/msr.h: pull in linux/types.h
  * x86: fix RTC_AIE with CONFIG_HPET_EMULATE_RTC
  * Fix ARM profiling/instrumentation configuration
  * Fix Blackfin HARDWARE_PM support
  * libata fixes for sparse-found problems
  * [libata] pata_bf54x: checkpatch fixes
  * [libata] core checkpatch fix
  * libata: correct handling of TSS DVD
  * [IA64] Fix unaligned handler for floating point instructions with base
    update
  * Linux 2.6.24-rc8
  * lockdep: fix internal double unlock during self-test
  * lockdep: fix workqueue creation API lockdep interaction
  * lockdep: more hardirq annotations for notify_die()
  * hostap: section mismatch warning
  * wireless/libertas support for 88w8385 sdio older revision
  * ipw2200: fix typo in kerneldoc
  * b43: fix use-after-free rfkill bug
  * rt2x00: Fix ieee80211 payload alignment
  * sysfs: make sysfs_lookup() return ERR_PTR(-ENOENT) on failed lookup
  * sysfs: fix bugs in sysfs_rename/move_dir()
  * Use access mode instead of open flags to determine needed permissions
    (CVE-2008-0001)
  * IB/ipath: Fix receiving UD messages with immediate data
  * [NET]: Fix TX timeout regression in Intel drivers.
  * [NIU]: Fix 1G PHY link state handling.
  * [SPARC64]: Fix hypervisor TLB operation error reporting.
  * Input: mousedev - handle mice that use absolute coordinates
  * Input: usbtouchscreen - fix buffer overflow, make more egalax work
  * Input: psmouse - fix potential memory leak in psmouse_connect()
  * Input: psmouse - fix input_dev leak in lifebook driver
  * Input: ALPS - fix sync loss on Acer Aspire 5720ZG
  * ipg: balance locking in irq handler
  * ipg: plug Tx completion leak
  * ipg: fix queue stop condition in the xmit handler
  * ipg: fix Tx completion irq request
  * cpufreq: Initialise default governor before use
  * hfs: fix coverity-found null deref
  * pnpacpi: print resource shortage message only once (more)
  * CRIS v10: vmlinux.lds.S: ix kernel oops on boot and use common defines
  * mm: fix section mismatch warning in page_alloc.c
  * jbd: do not try lock_acquire after handle made invalid
  * alpha: fix conversion from denormal float to double
  * #ifdef very expensive debug check in page fault path
  * Fix unbalanced helper_lock in kernel/kmod.c
  * fix wrong sized spinlock flags argument
  * bonding: fix locking in sysfs primary/active selection
  * bonding: fix ASSERT_RTNL that produces spurious warnings
  * bonding: fix locking during alb failover and slave removal
  * bonding: release slaves when master removed via sysfs
  * bonding: Fix up parameter parsing
  * bonding: fix lock ordering for rtnl and bonding_rwsem
  * bonding: Don't hold lock when calling rtnl_unlock
  * Documentation: add a guideline for hard_start_xmit method
  * atl1: fix frame length bug
  * S2io: Fixed synchronization between scheduling of napi with card reset
    and close
  * dscc4 endian fixes
  * wan/lmc bitfields fixes
  * sbni endian fixes
  * 3c574, 3c515 bitfields abuse
  * dl2k: BMCR_t fixes
  * dl2k: ANAR, ANLPAR fixes
  * dl2k: BMSR fixes
  * dl2k: MSCR, MSSR, ESR, PHY_SCR fixes
  * dl2k: the rest
  * Replace cpmac fix
  * [WATCHDOG] Revert "Stop looking for device as soon as one is found"
  * [WATCHDOG] clarify watchdog operation in documentation
  * x86: add support for the latest Intel processors to Oprofile
  * Selecting LGUEST should turn on Guest support, as in 2.6.23.
  * ARM: OMAP1: Keymap fix for f-sample and p2-sample
  * ARM: OMAP1: Fix compile for board-nokia770
  * pata_pdc202xx_old: Fix crashes with ATAPI
  * arch: Ignore arch/i386 and arch/x86_64
  * Remove bogus duplicate CONFIG_LGUEST_GUEST entry.
  * [ARM] pxa: don't rely on r2 being preserved over a function call
  * [ARM] 4748/1: dca: source drivers/dca/Kconfig in arch/arm/Kconfig to
    fix warning
  * rfkill: call rfkill_led_trigger_unregister() on error
  * [IPV6]: Mischecked tw match in __inet6_check_established.
  * [IPV4] fib_hash: fix duplicated route issue
  * [IPV4] fib_trie: fix duplicated route issue
  * [NET]: Fix interrupt semaphore corruption in Intel drivers.
  * [IPV4] FIB_HASH : Avoid unecessary loop in fn_hash_dump_zone()
  * [IPV6] ROUTE: Make sending algorithm more friendly with RFC 4861.
  * [NETFILTER]: bridge-netfilter: fix net_device refcnt leaks
  * [NEIGH]: Revert 'Fix race between neigh_parms_release and
    neightbl_fill_parms'
  * [IrDA]: af_irda memory leak fixes
  * [ATM] atm/idt77105.c: Fix section mismatch.
  * [ATM] atm/suni.c: Fix section mismatch.
  * [AF_KEY]: Fix skb leak on pfkey_send_migrate() error
  * [NET]: rtnl_link: fix use-after-free
  * [IPV6]: ICMP6_MIB_OUTMSGS increment duplicated
  * [IPV6]: RFC 2011 compatibility broken
  * [ICMP]: ICMP_MIB_OUTMSGS increment duplicated
  * selinux: fix memory leak in netlabel code
  * [MIPS] SMTC: Fix build error.
  * [MIPS] Malta: Fix reading the PCI clock frequency on big-endian
  * tc35815: Use irq number for tc35815-mac platform device id
  * keyspan: fix oops
  * hrtimer: fix section mismatch
  * timer: fix section mismatch
  * CRIS: add missed local_irq_restore call
  * s3c2410_fb: fix line length calculation
  * Fix filesystem capability support
  * sched: group scheduler, set uid share fix
  * hwmon: (it87) request only Environment Controller ports
  * W1: w1_therm.c ds18b20 decode freezing temperatures correctly
  * W1: w1_therm.c is flagging 0C etc as invalid
  * rcu: fix section mismatch
  * Fix file references in documentation and Kconfig
  * x86: GEODE fix a race condition in the MFGPT timer tick
  * virtnet: remove double ether_setup
  * virtio:simplify-config-mechanism
  * virtio: An entropy device, as suggested by hpa.
  * virtio: Export vring functions for modules to use
  * virtio: Put the virtio under the virtualization menu
  * virtio:pci-device
  * Fix vring_init/vring_size to take unsigned long
  * virtio:vring-kick-when-empty
  * virtio:explicit-callback-disable
  * virtio:net-flush-queue-on-init
  * virtio:net-fix-xmit-skb-free-real
  * Parametrize the napi_weight for virtio receive queue.
  * Handle module unload Add the device release function.
  * Update all status fields on driver unload
  * Make virtio modules GPL
  * Make virtio_pci license be GPL2+
  * Use Qumranet donated PCI vendor/device IDs
  * virtio:more-interrupt-suppression
  * Reboot Implemented
  * lguest:reboot-fix
  * introduce vcpu struct
  * adapt lguest launcher to per-cpuness
  * initialize vcpu
  * per-cpu run guest
  * make write() operation smp aware
  * make hypercalls use the vcpu struct
  * per-vcpu lguest timers
  * per-vcpu interrupt processing.
  * map_switcher_in_guest() per-vcpu
  * make emulate_insn receive a vcpu struct.
  * make registers per-vcpu
  * replace lguest_arch with lg_cpu_arch.
  * per-vcpu lguest task management
  * makes special fields be per-vcpu
  * make pending notifications per-vcpu
  * per-vcpu lguest pgdir management

-- Tim Gardner <tim.gardner@canonical.com>   Thu, 17 Jan 2008 14:45:01 -0700

Changed in linux:
status:	Fix Committed → Fix Released

Bug Watch Updater (bug-watch-updater) on 2010-06-22

Changed in audit (Debian):
status:	New → Fix Released

	Status	Importance	Assigned to
audit (Debian)	Fix Released	Unknown	debbugs #444118
audit (Ubuntu)	Invalid	Medium	Unassigned
linux (Ubuntu)	Fix Released	Medium	Stefan Bader

Debian
audit package

auditctl: Error sending add rule data request (Invalid argument) - Enable CONFIG_AUDITSYSCALL in kernel config

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Debianaudit package

auditctl: Error sending add rule data request (Invalid argument) - Enable CONFIG_AUDITSYSCALL in kernel config

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Debian
audit package