[kernel] r7175 - in dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian: patches patches/series

Dann Frazier dannf at costa.debian.org
Thu Aug 17 03:09:26 UTC 2006 

Author: dannf
Date: Thu Aug 17 03:09:25 2006
New Revision: 7175

Added:
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/cdrom-bad-cgc.buflen-assign.dpatch
      - copied unchanged from r7172, /dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/224_cdrom-bad-cgc.buflen-assign.diff
Modified:
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5

Log:
* cdrom-bad-cgc.buflen-assign.dpatch
  [SECURITY] Fix buffer overflow in dvd_read_bca which could potentially
  be used by a local user to trigger a buffer overflow via a specially
  crafted DVD, USB stick, or similar automatically mounted device.
  See CVE-2006-2935

Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	(original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	Thu Aug 17 03:09:25 2006
@@ -13,8 +13,13 @@
     [SECURITY] Fix buffer overflow in NFS readline handling that allows a
     remote server to cause a denial of service (crash) via a long symlink
     See CVE-2005-4798
+  * cdrom-bad-cgc.buflen-assign.dpatch
+    [SECURITY] Fix buffer overflow in dvd_read_bca which could potentially
+    be used by a local user to trigger a buffer overflow via a specially
+    crafted DVD, USB stick, or similar automatically mounted device.
+    See CVE-2006-2935
 
- -- dann frazier <dannf at debian.org>  Wed, 16 Aug 2006 20:24:10 -0600
+ -- dann frazier <dannf at debian.org>  Wed, 16 Aug 2006 21:07:31 -0600
 
 kernel-source-2.6.8 (2.6.8-16sarge4) stable-security; urgency=high
 

Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5	(original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5	Thu Aug 17 03:09:25 2006
@@ -1,3 +1,4 @@
 + fs-ext3-bad-nfs-handle.dpatch
 + direct-io-write-mem-leak.dpatch
 + nfs-handle-long-symlinks.dpatch
++ cdrom-bad-cgc.buflen-assign.dpatch

More information about the Kernel-svn-changes mailing list