[kernel] r8443 - in dists/etch/linux-2.6/debian: . patches/bugfix patches/series

Dann Frazier dannf at alioth.debian.org
Mon Apr 9 21:08:27 UTC 2007 

Author: dannf
Date: Mon Apr  9 21:08:26 2007
New Revision: 8443

Added:
   dists/etch/linux-2.6/debian/patches/bugfix/appletalk-endianness-annotations.patch
      - copied unchanged from r8442, releases/linux-2.6/2.6.18.dfsg.1-12etch1/debian/patches/bugfix/appletalk-endianness-annotations.patch
   dists/etch/linux-2.6/debian/patches/bugfix/appletalk-length-mismatch.patch
      - copied unchanged from r8442, releases/linux-2.6/2.6.18.dfsg.1-12etch1/debian/patches/bugfix/appletalk-length-mismatch.patch
   dists/etch/linux-2.6/debian/patches/bugfix/cm4040-buffer-overflow.patch
      - copied unchanged from r8442, releases/linux-2.6/2.6.18.dfsg.1-12etch1/debian/patches/bugfix/cm4040-buffer-overflow.patch
   dists/etch/linux-2.6/debian/patches/bugfix/core-dump-unreadable-PT_INTERP.patch
      - copied unchanged from r8442, releases/linux-2.6/2.6.18.dfsg.1-12etch1/debian/patches/bugfix/core-dump-unreadable-PT_INTERP.patch
   dists/etch/linux-2.6/debian/patches/bugfix/ipv6_fl_socklist-no-share.patch
      - copied unchanged from r8442, releases/linux-2.6/2.6.18.dfsg.1-12etch1/debian/patches/bugfix/ipv6_fl_socklist-no-share.patch
   dists/etch/linux-2.6/debian/patches/series/12etch1
      - copied unchanged from r8442, releases/linux-2.6/2.6.18.dfsg.1-12etch1/debian/patches/series/12etch1
Modified:
   dists/etch/linux-2.6/debian/changelog
Log:
merge in 2.6.18.dfsg.1-12etch1

Modified: dists/etch/linux-2.6/debian/changelog
==============================================================================
--- dists/etch/linux-2.6/debian/changelog	(original)
+++ dists/etch/linux-2.6/debian/changelog	Mon Apr  9 21:08:26 2007
@@ -19,6 +19,27 @@
 
  -- dann frazier <dannf at debian.org>  Fri, 06 Apr 2007 13:16:08 -0600
 
+linux-2.6 (2.6.18.dfsg.1-12etch1) stable-security; urgency=high
+
+  * bugfix/core-dump-unreadable-PT_INTERP.patch
+    [SECURITY] Fix a vulnerability that allows local users to read
+    otherwise unreadable (but executable) files by triggering a core dump.
+    See CVE-2007-0958
+  * bugfix/appletalk-length-mismatch.patch
+    [SECURITY] Fix a remote DoS (crash) in appletalk
+    Depends upon bugfix/appletalk-endianness-annotations.patch
+    See CVE-2007-1357
+  * bugfix/cm4040-buffer-overflow.patch
+    [SECURITY] Fix a buffer overflow in the Omnikey CardMan 4040 driver
+    See CVE-2007-0005
+  * bugfix/ipv6_fl_socklist-no-share.patch
+    [SECURITY] Fix local DoS vulnerability caused by inadvertently sharing
+    ipv6_fl_socklist between the listening socket and the socket created
+    for connection.
+    See CVE-2007-1592
+
+ -- dann frazier <dannf at debian.org>  Sun, 08 Apr 2007 16:52:59 -0600
+
 linux-2.6 (2.6.18.dfsg.1-12) unstable; urgency=low
 
   [ Steve Langasek ]

More information about the Kernel-svn-changes mailing list