[kernel] r6574 - patch-tracking
Dann Frazier
dannf at costa.debian.org
Tue May 16 06:23:54 UTC 2006
Author: dannf
Date: Tue May 16 06:23:53 2006
New Revision: 6574
Modified:
patch-tracking/CVE-2005-3359
Log:
pending in 2.6.8-16sarge3
Modified: patch-tracking/CVE-2005-3359
==============================================================================
--- patch-tracking/CVE-2005-3359 (original)
+++ patch-tracking/CVE-2005-3359 Tue May 16 06:23:53 2006
@@ -3,8 +3,18 @@
http://linux.bkbits.net:8080/linux-2.6/cset@4339c66aLroC1_zunYKhEIbtIWrnwg
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=175769
http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=a79af59efd20990473d579b1d8d70bb120f0920c
+ CONFIRM:http://linux.bkbits.net:8080/linux-2.6/cset@4339c66aLroC1_zunYKhEIbtIWrnwg
+ CONFIRM:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=175769
+ UBUNTU:USN-263-1
+ URL:http://www.ubuntulinux.org/support/documentation/usn/usn-263-1
+ BID:17078
+ URL:http://www.securityfocus.com/bid/17078
+ SECUNIA:19220
+ URL:http://secunia.com/advisories/19220
Description:
- Fix module reference counts for loadable protocol modules
+ The atm module in Linux kernel 2.6 before 2.6.14 allows local users to cause a
+ denial of service (panic) via certain socket calls that produce inconsistent
+ reference counts for loadable protocol modules.
Notes:
dannf> Easily reproduced on 2.6.8, haven't tried 2.4.27 yet
dannf> Note that atm is marked experimental in 2.6.8, and is not built
@@ -13,7 +23,7 @@
Bugs:
upstream:
linux-2.6:
-2.6.8-sarge-security: needed
+2.6.8-sarge-security: pending (2.6.8-16sarge3)
2.4.27-sarge-security:
2.4.27:
2.4.19-woody-security:
More information about the Kernel-svn-changes
mailing list