r4349 - in dists:
sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian
sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian
sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian
sid/linux-2.6/debian
trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian
Simon Horman
horms at costa.debian.org
Fri Oct 7 10:15:25 UTC 2005
Author: horms
Date: 2005-10-07 10:15:23 +0000 (Fri, 07 Oct 2005)
New Revision: 4349
Modified:
dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
dists/sid/linux-2.6/debian/changelog
dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
Log:
Annotate CAN-2005-3053 CAN-2005-3044 CAN-2005-3105 CAN-2005-3106 CAN-2005-3107 CAN-2005-2553
Modified: dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
===================================================================
--- dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog 2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog 2005-10-07 10:15:23 UTC (rev 4349)
@@ -8,6 +8,7 @@
Reference: http://www.intel.com/cd/ids/developer/asmo-na/eng/215766.htm
N.B: I have marked this as security as it seems that it would
be trivial to construct a user-space DoS - Simon Horman.
+ See CAN-2005-3105
[ Simon Horman ]
* drivers-net-via-rhine-wol-oops.dpatch (removed):
@@ -43,9 +44,11 @@
* fs-exec-ptrace-core-exec-race.dpatch
[SECURITY] Fix race between core dumping and exec with shared mm
+ See CAN-2005-3106
* fs-exec-ptrace-deadlock.dpatch
[SECURITY] Fix coredump_wait deadlock with ptracer & tracee on shared mm
+ See CAN-2005-3107
* fs-exec-posix-timers-leak-1.dpatch,
[SECURITY] fs-exec-posix-timers-leak-2.dpatch
Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
===================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog 2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog 2005-10-07 10:15:23 UTC (rev 4349)
@@ -52,8 +52,9 @@
From 2.6.13.1
* lost-fput-in-32bit-ioctl-on-x86-64.patch
- [SECURITY] lost fput in 32bit ioctl on x86-6; local DoS4
+ [SECURITY] lost fput in 32bit ioctl on x86-6; local DoS
From 2.6.13.2
+ See CAN-2005-3044
* lost-sockfd_put-in-32bit-compat-routing_ioctl.patch
[SECURITY] lost sockfd_put() in routing_ioctl(); local DoS
@@ -65,6 +66,15 @@
* arch-x86_64-mm-ioremap-page-lookup.dpatch
in 2.6.8-16sarge1 is CAN-2005-3108
+ * fs-exec-ptrace-core-exec-race.dpatch
+ in 2.6.8-16sarge1 is CAN-2005-3107
+
+ * fs-exec-ptrace-deadlock.dpatch
+ in 2.6.8-16sarge1 is CAN-2005-3106
+
+ * mckinley_icache.dpatch
+ in 2.6.8-16sarge1 is CAN-2005-3105
+
[ dann frazier ]
* mempolicy-check-mode.dpatch
[SECURITY] Input validation in sys_set_mempolicy(); local DoS.
Modified: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
===================================================================
--- dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog 2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog 2005-10-07 10:15:23 UTC (rev 4349)
@@ -23,6 +23,9 @@
* 179_net-ipv4-netfilter-ip_recent-last_pkts.diff
Included in 2.4.27-10sarge1 is CAN-2005-2872
+ * 184_arch-x86_64-ia32-ptrace32-oops.diff
+ Included in 2.4.27-10sarge1 is CAN-2005-2553
+
-- Simon Horman <horms at debian.org> Mon, 12 Sep 2005 17:13:01 +0900
kernel-source-2.4.27 (2.4.27-10sarge1) stable-security; urgency=high
Modified: dists/sid/linux-2.6/debian/changelog
===================================================================
--- dists/sid/linux-2.6/debian/changelog 2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sid/linux-2.6/debian/changelog 2005-10-07 10:15:23 UTC (rev 4349)
@@ -4,6 +4,10 @@
* Add a note to README.Debian that explains where users can find the .config
files used to generate the linux-image packages. Closes: #316809
+ [ Simon Horman ]
+ * mempolicy fix in 2.6.12-3 from upstream's 2.6.12.5 is CAN-2005-3053
+ * lost-fput-in-32bit-ioctl-on-x86-64.patch in 2.6.12-7 is CAN-2005-3044
+
-- dann frazier <dannf at debian.org> Tue, 27 Sep 2005 23:48:47 -0600
linux-2.6 (2.6.12-10) unstable; urgency=high
Modified: dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
===================================================================
--- dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog 2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog 2005-10-07 10:15:23 UTC (rev 4349)
@@ -5,6 +5,7 @@
[Security, x86_64] 32 bit ltrace oops when tracing 64 bit executable
http://lkml.org/lkml/2005/1/5/245
http://linux.bkbits.net:8080/linux-2.4/cset@41dd3455GwQPufrGvBJjcUOXQa3WXA
+ See CAN-2005-2553
* 185_net-sockglue-cap.diff
[Security] Restrict socket policy loading to CAP_NET_ADMIN.
More information about the Kernel-svn-changes
mailing list