r2196 - trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian
Sven Luther
luther@costa.debian.org
Sat, 08 Jan 2005 14:46:14 +0100
Author: luther
Date: 2005-01-08 14:46:14 +0100 (Sat, 08 Jan 2005)
New Revision: 2196
Modified:
trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog
Log:
Preparing powerpc 2.6.8-9 upload.
Modified: trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog
===================================================================
--- trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog 2005-01-08 13:29:38 UTC (rev 2195)
+++ trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog 2005-01-08 13:46:14 UTC (rev 2196)
@@ -1,3 +1,34 @@
+kernel-patch-powerpc-2.6.8 (2.6.8-9) unstable; urgency=high
+
+ * Built against kernel-source 2.6.8-12 :
+ - [powerpc - prep] Fix bad irq assignement for pci devices on motorola
+ powerstack boxes. (Closes: #287933) (Sven Luther)
+ - add dh_fixperms to the build targets to kernel-patch-debian-2.6.8
+ to ensure that the permissions of the files in this package are
+ sensible. (See: Bug#288279) (Simon Horman)
+ - [SECURITY] Fix vulnerability in the ELF loader code allowing
+ local attacker to execute code as root, CAN-2004-1235.
+ (Maximilian Attems)
+ - Added backport of qla1280 driver from 2.6.10. (Norbert Tretkowski)
+ - [SECURITY] 028-do_brk_security_fixes.dpatch
+ Drop Marcelo's fix for this; use Linus' instead.
+ Fix local root vulnerability for various do_brk() calls;
+ ensure an exclusive lock on memory while modifying it; CAN-2004-1235
+ (Andres Salomon) (Bug: #289155).
+ - [SECURITY] 029-random_poolsize_overflow.dpatch
+ drivers/char/random allows you to set the poolsize; its sanity checking
+ on that input isn's very good. We fix that here.
+ See http://seclists.org/lists/fulldisclosure/2005/Jan/0270.html for
+ more details. This fixes #3 on that list (Andres Salomon).
+ - [SECURITY] 030-moxa_user_copy_checking.dpatch
+ The moxa driver does some ugly things w/ signed integers. This fixes
+ #4 on Brad Spengler's advisory (Andres Salomon).
+ - [SECURITY] 031-sg_scsi_ioctl_int_overflows.dpatch
+ SG ioctl stuff doesn't actually check whether the scsi command length
+ is positive. #5 on the above advisory (Andres Salomon).
+
+ -- Sven Luther <luther@debian.org> Sat, 8 Jan 2005 14:47:16 +0100
+
kernel-patch-powerpc-2.6.8 (2.6.8-8) unstable; urgency=high
* Moved remaining powerpc patches (pegasos-via-ide and legacy-serial)