[kernel] r6654 - in
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian:
patches patches/series
Dann Frazier
dannf at costa.debian.org
Sat May 20 17:01:50 UTC 2006
Author: dannf
Date: Sat May 20 17:01:50 2006
New Revision: 6654
Added:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/sctp-param-bound-checks.dpatch
- copied unchanged from r6653, /dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/220_sctp-param-bound-checks.diff
Modified:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3
Log:
* sctp-param-bound-checks.dpatch
[SECURITY] Fix a bound checking error (remote DoS) in the SCTP parameter
checking code
See CVE-2006-1858
Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog (original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog Sat May 20 17:01:50 2006
@@ -92,8 +92,12 @@
[SECURITY] Fix a remote buffer overflow that can result from a badly
formatted HB-ACK chunk
See CVE-2006-1857
+ * sctp-param-bound-checks.dpatch
+ [SECURITY] Fix a bound checking error (remote DoS) in the SCTP parameter
+ checking code
+ See CVE-2006-1858
- -- dann frazier <dannf at debian.org> Sat, 20 May 2006 11:30:27 -0500
+ -- dann frazier <dannf at debian.org> Sat, 20 May 2006 12:00:51 -0500
kernel-source-2.6.8 (2.6.8-16sarge2) stable-security; urgency=high
Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3 (original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge3 Sat May 20 17:01:50 2006
@@ -25,3 +25,4 @@
+ xfs-ftruncate-leak.dpatch
+ nfs-another-O_DIRECT-fix.dpatch
+ sctp-hb-ack-overflow.dpatch
++ sctp-param-bound-checks.dpatch
More information about the Kernel-svn-changes
mailing list