[kernel] r4846 - dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series patch-tracking

Dann Frazier dannf at costa.debian.org
Sun Nov 20 05:12:28 UTC 2005 

Author: dannf
Date: Sun Nov 20 05:12:26 2005
New Revision: 4846

Modified:
   dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
   dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge2
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge2
   patch-tracking/CVE-2005-2709
Log:
disabling ABI-changing CVE-2005-2709 for now


Modified: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
==============================================================================
--- dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	(original)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	Sun Nov 20 05:12:26 2005
@@ -40,11 +40,11 @@
   * 195_net-ipv6-udp_v6_get_port-loop.diff
     [SECURITY] Fix infinite loop in udp_v6_get_port().  See CVE-2005-2973
 
-  * 196_sysctl-unregistration-oops.patch
-    [SECURITY] Fix a potential local root exploit in the
-    /proc/sys/net/ipv4/conf interface.  See CVE-2005-2709
-
-
+  # DISABLED DUE TO ABI CHANGE
+  # * 196_sysctl-unregistration-oops.patch
+  #  [SECURITY] Fix a potential local root exploit in the
+  #  /proc/sys/net/ipv4/conf interface.  See CVE-2005-2709
+  
  -- dann frazier <dannf at debian.org>  Fri, 18 Nov 2005 11:04:04 -0700
 
 kernel-source-2.4.27 (2.4.27-10sarge1) stable-security; urgency=high

Modified: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge2
==============================================================================
--- dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge2	(original)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/series/2.4.27-10sarge2	Sun Nov 20 05:12:26 2005
@@ -4,4 +4,4 @@
 + 192_orinoco-info-leak.diff
 + 194_xfs-inode-race.diff
 + 195_net-ipv6-udp_v6_get_port-loop.diff
-+ 196_sysctl-unregistration-oops.diff
+# ABI CHANGE 196_sysctl-unregistration-oops.diff

Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	(original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	Sun Nov 20 05:12:26 2005
@@ -95,9 +95,10 @@
   * net-ipv6-udp_v6_get_port-loop.dpatch
     [SECURITY] Fix infinite loop in udp_v6_get_port().  See CVE-2005-2973
 
-  * sysctl-unregistration-oops.dpatch
-    [SECURITY] Fix a potential local root exploit in the
-    /proc/sys/net/ipv4/conf interface.  See CVE-2005-2709
+  # DISABLED DUE TO ABI CHANGE
+  # * sysctl-unregistration-oops.dpatch
+  #   [SECURITY] Fix a potential local root exploit in the
+  #   /proc/sys/net/ipv4/conf interface.  See CVE-2005-2709
 
  -- dann frazier <dannf at debian.org>  Thu, 17 Nov 2005 23:37:59 -0700
 

Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge2
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge2	(original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge2	Sun Nov 20 05:12:26 2005
@@ -12,4 +12,4 @@
 + orinoco-info-leak.dpatch
 + plug-names_cache-memleak.dpatch
 + net-ipv6-udp_v6_get_port-loop.dpatch
-+ sysctl-unregistration-oops.dpatch
+# ABI CHANGE sysctl-unregistration-oops.dpatch

Modified: patch-tracking/CVE-2005-2709
==============================================================================
--- patch-tracking/CVE-2005-2709	(original)
+++ patch-tracking/CVE-2005-2709	Sun Nov 20 05:12:26 2005
@@ -20,8 +20,8 @@
 upstream: pending (2.6.14.1)
 2.6.13: needed
 2.6.12: 
-2.6.8-sarge-security: pending (2.6.8-16sarge2) [sysctl-unregistration-oops.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge2) [196_sysctl-unregistration-oops.patch]
+2.6.8-sarge-security: needed [sysctl-unregistration-oops.dpatch]
+2.4.27-sarge-security: needed [196_sysctl-unregistration-oops.patch]
 2.4.27: 
 2.6.14: 
 2.6.8:

More information about the Kernel-svn-changes mailing list