[kernel] r8559 - in dists/etch/linux-2.6/debian: . patches/bugfix patches/series

Dann Frazier dannf at alioth.debian.org
Wed May 2 01:10:14 UTC 2007 

Author: dannf
Date: Wed May  2 01:10:14 2007
New Revision: 8559

Added:
   dists/etch/linux-2.6/debian/patches/bugfix/ipv6-disallow-RH0-by-default.patch
      - copied unchanged from r8551, dists/etch-security/linux-2.6/debian/patches/bugfix/ipv6-disallow-RH0-by-default.patch
Modified:
   dists/etch/linux-2.6/debian/changelog
   dists/etch/linux-2.6/debian/patches/series/13
Log:
* bugfix/ipv6-disallow-RH0-by-default.patch
  [SECURITY] Avoid a remote DoS (network amplification between two routers)
  by disabling type0 IPv6 route headers by default. Can be re-enabled via
  a sysctl interface.
  This patch changes the kernel ABI.
  See CVE-2007-2242

Modified: dists/etch/linux-2.6/debian/changelog
==============================================================================
--- dists/etch/linux-2.6/debian/changelog	(original)
+++ dists/etch/linux-2.6/debian/changelog	Wed May  2 01:10:14 2007
@@ -1,4 +1,4 @@
-linux-2.6 (2.6.18.dfsg.1-13) UNRELEASED; urgency=low
+linux-2.6 (2.6.18.dfsg.1-13) UNRELEASED; urgency=high
 
   [ Bastian Blank ]
   * [vserver] Fix overflow in network accounting. (closes: #412132)
@@ -17,6 +17,12 @@
     Fix mounting of network filesystems with VX_BINARY_MOUNT caps
     (closes: #418076)
   * Disable broken CONFIG_IP_ROUTE_MULTIPATH_CACHED setting. (closes: #418344)
+  * bugfix/ipv6-disallow-RH0-by-default.patch
+    [SECURITY] Avoid a remote DoS (network amplification between two routers)
+    by disabling type0 IPv6 route headers by default. Can be re-enabled via
+    a sysctl interface.
+    This patch changes the kernel ABI.
+    See CVE-2007-2242
 
   [ maximilian attems ]
   * Backport support for i965 to agp too. (closes: #406111)
@@ -26,7 +32,7 @@
   [ Martin Michlmayr ]
   * Fix wrong checksum for split TCP packets on 64-bit MIPS. (closes: #421283)
 
- -- maximilian attems <maks at debian.org>  Tue, 24 Apr 2007 20:13:49 +0200
+ -- dann frazier <dannf at debian.org>  Tue, 01 May 2007 19:09:28 -0600
 
 linux-2.6 (2.6.18.dfsg.1-12etch1) stable-security; urgency=high
 

Modified: dists/etch/linux-2.6/debian/patches/series/13
==============================================================================
--- dists/etch/linux-2.6/debian/patches/series/13	(original)
+++ dists/etch/linux-2.6/debian/patches/series/13	Wed May  2 01:10:14 2007
@@ -3,3 +3,4 @@
 + bugfix/fix-syscallX-uml.patch
 + bugfix/mips/tcp-checksum.patch
 + bugfix/jmicron-generic-device-conflict.patch
++ bugfix/ipv6-disallow-RH0-by-default.patch

More information about the Kernel-svn-changes mailing list