[kernel] r9391 - in dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian: . patches patches/series

Dann Frazier dannf at alioth.debian.org
Tue Aug 28 05:57:49 UTC 2007 

Author: dannf
Date: Tue Aug 28 05:57:49 2007
New Revision: 9391

Log:
fix ipv4 portion of CVE-2007-2172

Added:
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/ipv4-fib_props-out-of-bounds.dpatch
      - copied unchanged from r9385, /dists/etch-security/linux-2.6/debian/patches/bugfix/ipv4-fib_props-out-of-bounds.patch
Modified:
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17sarge1

Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	(original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog	Tue Aug 28 05:57:49 2007
@@ -7,14 +7,14 @@
     [SECURITY] fix unpriveleged memory leak when a PPPoE socket is released
     after connect but before PPPIOCGCHAN ioctl is called upon it
     See CVE-2007-2525
-  * dn_fib-out-of-bounds.dpatch
+  * dn_fib-out-of-bounds.dpatch, ipv4-fib_props-out-of-bounds.dpatch
     [SECURITY] Fix out of bounds condition in dn_fib_props[]
     See CVE-2007-2172
   * aacraid-ioctl-perm-check.dpatch
     [SECURITY] Require admin capabilities to issue ioctls to aacraid devices
     See CVE-2007-4308
 
- -- dann frazier <dannf at debian.org>  Mon, 27 Aug 2007 23:48:41 -0600
+ -- dann frazier <dannf at debian.org>  Mon, 27 Aug 2007 23:56:14 -0600
 
 kernel-source-2.6.8 (2.6.8-17) oldstable; urgency=high
 

Modified: dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17sarge1
==============================================================================
--- dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17sarge1	(original)
+++ dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-17sarge1	Tue Aug 28 05:57:49 2007
@@ -1,4 +1,5 @@
 + compat_sys_mount-NULL-data_page.dpatch
 + pppoe-socket-release-mem-leak.dpatch
 + dn_fib-out-of-bounds.dpatch
++ ipv4-fib_props-out-of-bounds.dpatch
 + aacraid-ioctl-perm-check.dpatch

More information about the Kernel-svn-changes mailing list