r4349 - in dists: sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian sid/linux-2.6/debian trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian

Simon Horman horms at costa.debian.org
Fri Oct 7 10:15:25 UTC 2005 

Author: horms
Date: 2005-10-07 10:15:23 +0000 (Fri, 07 Oct 2005)
New Revision: 4349

Modified:
   dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   dists/sid/linux-2.6/debian/changelog
   dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
Log:
Annotate CAN-2005-3053 CAN-2005-3044 CAN-2005-3105 CAN-2005-3106 CAN-2005-3107 CAN-2005-2553

Modified: dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
===================================================================
--- dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	2005-10-07 10:15:23 UTC (rev 4349)
@@ -8,6 +8,7 @@
     Reference: http://www.intel.com/cd/ids/developer/asmo-na/eng/215766.htm
     N.B: I have marked this as security as it seems that it would
     be trivial to construct a user-space DoS - Simon Horman.
+    See CAN-2005-3105
 
   [ Simon Horman ]
   * drivers-net-via-rhine-wol-oops.dpatch (removed):
@@ -43,9 +44,11 @@
 
   * fs-exec-ptrace-core-exec-race.dpatch
     [SECURITY] Fix race between core dumping and exec with shared mm
+    See CAN-2005-3106
 
   * fs-exec-ptrace-deadlock.dpatch
     [SECURITY] Fix coredump_wait deadlock with ptracer & tracee on shared mm
+    See CAN-2005-3107
 
   * fs-exec-posix-timers-leak-1.dpatch,
     [SECURITY] fs-exec-posix-timers-leak-2.dpatch

Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
===================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	2005-10-07 10:15:23 UTC (rev 4349)
@@ -52,8 +52,9 @@
     From 2.6.13.1
 
   * lost-fput-in-32bit-ioctl-on-x86-64.patch
-    [SECURITY] lost fput in 32bit ioctl on x86-6; local DoS4
+    [SECURITY] lost fput in 32bit ioctl on x86-6; local DoS
     From 2.6.13.2
+    See CAN-2005-3044
 
   * lost-sockfd_put-in-32bit-compat-routing_ioctl.patch
     [SECURITY] lost sockfd_put() in routing_ioctl(); local DoS
@@ -65,6 +66,15 @@
   * arch-x86_64-mm-ioremap-page-lookup.dpatch
     in 2.6.8-16sarge1 is CAN-2005-3108
 
+  * fs-exec-ptrace-core-exec-race.dpatch
+    in 2.6.8-16sarge1 is CAN-2005-3107
+
+  * fs-exec-ptrace-deadlock.dpatch
+    in 2.6.8-16sarge1 is CAN-2005-3106
+
+  * mckinley_icache.dpatch
+    in 2.6.8-16sarge1 is CAN-2005-3105
+
   [ dann frazier ]
   * mempolicy-check-mode.dpatch
     [SECURITY] Input validation in sys_set_mempolicy(); local DoS.

Modified: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
===================================================================
--- dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	2005-10-07 10:15:23 UTC (rev 4349)
@@ -23,6 +23,9 @@
   * 179_net-ipv4-netfilter-ip_recent-last_pkts.diff
     Included in 2.4.27-10sarge1 is CAN-2005-2872
 
+  * 184_arch-x86_64-ia32-ptrace32-oops.diff
+    Included in 2.4.27-10sarge1 is CAN-2005-2553
+
  -- Simon Horman <horms at debian.org>  Mon, 12 Sep 2005 17:13:01 +0900
 
 kernel-source-2.4.27 (2.4.27-10sarge1) stable-security; urgency=high

Modified: dists/sid/linux-2.6/debian/changelog
===================================================================
--- dists/sid/linux-2.6/debian/changelog	2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/sid/linux-2.6/debian/changelog	2005-10-07 10:15:23 UTC (rev 4349)
@@ -4,6 +4,10 @@
   * Add a note to README.Debian that explains where users can find the .config
     files used to generate the linux-image packages.  Closes: #316809
 
+  [ Simon Horman ]
+  * mempolicy fix in 2.6.12-3 from upstream's 2.6.12.5 is CAN-2005-3053
+  * lost-fput-in-32bit-ioctl-on-x86-64.patch in 2.6.12-7 is CAN-2005-3044
+
  -- dann frazier <dannf at debian.org>  Tue, 27 Sep 2005 23:48:47 -0600
 
 linux-2.6 (2.6.12-10) unstable; urgency=high

Modified: dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
===================================================================
--- dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	2005-10-07 10:14:00 UTC (rev 4348)
+++ dists/trunk/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	2005-10-07 10:15:23 UTC (rev 4349)
@@ -5,6 +5,7 @@
     [Security, x86_64] 32 bit ltrace oops when tracing 64 bit executable
     http://lkml.org/lkml/2005/1/5/245
     http://linux.bkbits.net:8080/linux-2.4/cset@41dd3455GwQPufrGvBJjcUOXQa3WXA
+    See CAN-2005-2553
 
   * 185_net-sockglue-cap.diff
     [Security] Restrict socket policy loading to CAP_NET_ADMIN.

More information about the Kernel-svn-changes mailing list