[kernel] r6626 - in
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian:
patches patches/series
Dann Frazier
dannf at costa.debian.org
Sat May 20 05:32:43 UTC 2006
Author: dannf
Date: Sat May 20 05:32:41 2006
New Revision: 6626
Added:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/sctp-fragmented-receive-fix.dpatch
- copied unchanged from r6625, /dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/216_sctp-fragmented-receive-fix.diff
Modified:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3
Log:
* sctp-fragmented-receive-fix.dpatch
[SECURITY] Fix remote DoS vulnerability that allows IP fragmented
COOKIE_ECHO and HEARTBEAT SCTP control chunks to cause a kernel panic
See CVE-2006-2272
Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog (original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog Sat May 20 05:32:41 2006
@@ -63,8 +63,12 @@
[SECURITY] Fix remote DoS vulnerability that can lead to infinite recursion
when a packet containing two or more DATA fragments is received
See CVE-2006-2274
+ * sctp-fragmented-receive-fix.dpatch
+ [SECURITY] Fix remote DoS vulnerability that allows IP fragmented
+ COOKIE_ECHO and HEARTBEAT SCTP control chunks to cause a kernel panic
+ See CVE-2006-2272
- -- dann frazier <dannf at debian.org> Sat, 20 May 2006 00:22:09 -0500
+ -- dann frazier <dannf at debian.org> Sat, 20 May 2006 00:32:13 -0500
kernel-source-2.6.8 (2.6.8-16sarge2) stable-security; urgency=high
Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3 (original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3 Sat May 20 05:32:41 2006
@@ -15,3 +15,4 @@
+ madvise_remove-restrict.dpatch
+ mcast-ip-route-null-deref.dpatch
+ sctp-fragment-recurse.dpatch
++ sctp-fragmented-receive-fix.dpatch
More information about the Kernel-svn-changes
mailing list