[kernel] r7998 - in people/dannf/kernel-source-2.6.8-2.6.8/debian: . patches patches/series

Dann Frazier dannf at alioth.debian.org
Wed Dec 13 07:41:23 UTC 2006 

Author: dannf
Date: Wed Dec 13 08:41:23 2006
New Revision: 7998

Added:
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/__block_prepare_write-recovery.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/__block_prepare_write-recovery.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/atm-clip-freed-skb-deref.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/atm-clip-freed-skb-deref.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/bridge-get_fdb_entries-overflow.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/bridge-get_fdb_entries-overflow.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/ia64-sparc-cross-region-mappings.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/ia64-sparc-cross-region-mappings.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/ip6_flowlabel-lockup.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/ip6_flowlabel-lockup.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/perfmon-fd-refcnt.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/perfmon-fd-refcnt.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/ppc-alignment-exception-table-check.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/ppc-alignment-exception-table-check.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/s390-uaccess-memleak.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/s390-uaccess-memleak.dpatch
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge6
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/series/2.6.8-16sarge6
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge6dannf1
      - copied unchanged from r7997, people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5dannf1
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/smbfs-honor-mount-opts.dpatch
      - copied unchanged from r7997, releases/kernel/source/kernel-source-2.6.8-2.6.8/2.6.8-16sarge6/debian/patches/smbfs-honor-mount-opts.dpatch
Removed:
   people/dannf/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5dannf1
Modified:
   people/dannf/kernel-source-2.6.8-2.6.8/debian/changelog
Log:
merge in 2.6.8-16sarge6

Modified: people/dannf/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- people/dannf/kernel-source-2.6.8-2.6.8/debian/changelog	(original)
+++ people/dannf/kernel-source-2.6.8-2.6.8/debian/changelog	Wed Dec 13 08:41:23 2006
@@ -1,4 +1,4 @@
-kernel-source-2.6.8 (2.6.8-16sarge5dannf1) dannf; urgency=low
+kernel-source-2.6.8 (2.6.8-16sarge6dannf1) dannf; urgency=low
 
   * hp-diva-rmp3.dpatch, hp-diva-hurricane.dpatch:
     Add PCI IDs for newer Diva console ports
@@ -10,6 +10,47 @@
 
  -- dann frazier <dannf at debian.org>  Mon, 11 Dec 2006 23:33:30 -0700
 
+kernel-source-2.6.8 (2.6.8-16sarge6) stable-security; urgency=high
+
+  * perfmon-fd-refcnt.dpatch
+    [SECURITY][ia64] Fix file descriptor leak in perfmonctl
+    system call which could be used as a local denial of service attack
+    by depleting the system of file descriptors
+    See CVE-2006-3741
+  * ia64-sparc-cross-region-mappings.dpatch
+    [SECURITY] Prevent cross-region mappings on ia64 and sparc which
+    could be used in a local DoS attack (system crash)
+    See CVE-2006-4538
+  * __block_prepare_write-recovery.dpatch
+    [SECURITY] Fix an information leak in __block_prepare_write()
+    See CVE-2006-4813
+  * atm-clip-freed-skb-deref.dpatch
+    [SECURITY] Avoid dereferencing an already freed skb, preventing a
+    potential remote DoS (system crash) vector
+    See CVE-2006-4997
+  * ip6_flowlabel-lockup.dpatch
+    [SECURITY] Fix local DoS attack vector (lockups, oopses) in the
+    sequence handling for /proc/net/ip6_flowlabel
+    See CVE-2006-5619
+  * ppc-alignment-exception-table-check.dpatch
+    [SECURITY][ppc] Avoid potential DoS which can be triggered by some
+    futex ops
+    See CVE-2006-5649
+  * s390-uaccess-memleak.dpatch
+    [SECURITY][s390] Fix memory leak in copy_from_user by clearing the
+    remaining bytes of the kernel buffer after a fault on the userspace
+    address in copy_from_user()
+    See CVE-2006-5174
+  * smbfs-honor-mount-opts.dpatch
+    Honor uid, gid and mode mount options for smbfs even when unix extensions
+    are enabled
+    See CVE-2006-5871
+  * bridge-get_fdb_entries-overflow.dpatch
+    Protect against possible overflow in get_fdb_entries
+    See CVE-2006-5751
+
+ -- dann frazier <dannf at debian.org>  Mon,  4 Dec 2006 19:11:05 -0700
+
 kernel-source-2.6.8 (2.6.8-16sarge5) stable-security; urgency=high
 
   * [ERRATA] madvise_remove-restrict.dpatch

More information about the Kernel-svn-changes mailing list