[kernel] r5304 - dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian

Simon Horman horms at costa.debian.org
Fri Jan 6 05:57:54 UTC 2006 

Author: horms
Date: Fri Jan  6 05:57:53 2006
New Revision: 5304

Modified:
   dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
Log:
  * Errata for 2.4.27-8
    [SECURITY] SDLA firmware upgrade should require CAP_SYS_RAWIO;
    Local privelage escalation. See CVE-2006-0096
    This was incorrectly annotated in 2.4.27-8 as an overflow
    discovered using coverty, which is actually CVE-2004-2607
    129_net_sdla_coverty.diff, included in 2.4.27-8


Modified: dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog
==============================================================================
--- dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	(original)
+++ dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/changelog	Fri Jan  6 05:57:53 2006
@@ -14,6 +14,13 @@
       http://linux.bkbits.net:8080/linux-2.4/cset@41dd3455GwQPufrGvBJjcUOXQa3WXA
       184_arch-x86_64-ia32-ptrace32-oops.diff, included in 2.4.27-10sarge1
 
+  * Errata for 2.4.27-8
+    [SECURITY] SDLA firmware upgrade should require CAP_SYS_RAWIO; 
+    Local privelage escalation. See CVE-2006-0096
+    This was incorrectly annotated in 2.4.27-8 as an overflow
+    discovered using coverty, which is actually CVE-2004-2607
+    129_net_sdla_coverty.diff, included in 2.4.27-8
+
   * [Security] Restrict socket policy loading to CAP_NET_ADMIN.
     See CAN-2005-2555.
     185_net-sockglue-cap.diff
@@ -78,8 +85,8 @@
   * 150_private_fragment_queues-1.diff, 150_private_fragment_queues-2.diff:
     Keep fragment queues private to each user. See CAN-2005-0449 and
     http://oss.sgi.com/archives/netdev/2005-01/msg01048.html
-  
- -- Simon Horman <horms at verge.net.au>  Tue, 20 Dec 2005 11:05:02 +0900
+
+ -- Simon Horman <horms at verge.net.au>  Fri,  6 Jan 2006 14:54:46 +0900
 
 kernel-source-2.4.27 (2.4.27-10sarge1) stable-security; urgency=high

More information about the Kernel-svn-changes mailing list