r2196 - trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian

Sven Luther luther@costa.debian.org
Sat, 08 Jan 2005 14:46:14 +0100 

Author: luther
Date: 2005-01-08 14:46:14 +0100 (Sat, 08 Jan 2005)
New Revision: 2196

Modified:
   trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog
Log:
Preparing powerpc 2.6.8-9 upload.


Modified: trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog
===================================================================
--- trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog	2005-01-08 13:29:38 UTC (rev 2195)
+++ trunk/kernel/powerpc/kernel-patch-powerpc-2.6.8-2.6.8/debian/changelog	2005-01-08 13:46:14 UTC (rev 2196)
@@ -1,3 +1,34 @@
+kernel-patch-powerpc-2.6.8 (2.6.8-9) unstable; urgency=high
+
+  * Built against kernel-source 2.6.8-12 :
+    - [powerpc - prep] Fix bad irq assignement for pci devices on motorola
+      powerstack boxes. (Closes: #287933) (Sven Luther)
+    - add dh_fixperms to the build targets to kernel-patch-debian-2.6.8
+      to ensure that the permissions of the files in this package are
+      sensible. (See: Bug#288279) (Simon Horman)
+    - [SECURITY] Fix vulnerability in the ELF loader code allowing 
+      local attacker to execute code as root, CAN-2004-1235. 
+      (Maximilian Attems)
+    - Added backport of qla1280 driver from 2.6.10. (Norbert Tretkowski)
+    - [SECURITY] 028-do_brk_security_fixes.dpatch
+      Drop Marcelo's fix for this; use Linus' instead.
+      Fix local root vulnerability for various do_brk() calls;
+      ensure an exclusive lock on memory while modifying it; CAN-2004-1235
+      (Andres Salomon) (Bug: #289155).
+    - [SECURITY] 029-random_poolsize_overflow.dpatch
+      drivers/char/random allows you to set the poolsize; its sanity checking
+      on that input isn's very good.  We fix that here.
+      See http://seclists.org/lists/fulldisclosure/2005/Jan/0270.html for
+      more details.  This fixes #3 on that list (Andres Salomon).
+    - [SECURITY] 030-moxa_user_copy_checking.dpatch
+      The moxa driver does some ugly things w/ signed integers.  This fixes
+      #4 on Brad Spengler's advisory (Andres Salomon).
+    - [SECURITY] 031-sg_scsi_ioctl_int_overflows.dpatch
+      SG ioctl stuff doesn't actually check whether the scsi command length
+      is positive.  #5 on the above advisory (Andres Salomon).
+
+ -- Sven Luther <luther@debian.org>  Sat,  8 Jan 2005 14:47:16 +0100
+
 kernel-patch-powerpc-2.6.8 (2.6.8-8) unstable; urgency=high
 
   * Moved remaining powerpc patches (pegasos-via-ide and legacy-serial)