[kernel] r9566 - in dists/etch/linux-2.6/debian: . patches/bugfix patches/series

Dann Frazier dannf at alioth.debian.org
Wed Sep 26 20:02:43 UTC 2007 

Author: dannf
Date: Wed Sep 26 20:02:42 2007
New Revision: 9566

Log:
* Merge in changes from 2.6.18.dfsg.1-13etch3.
* bugfix/ptrace-handle-bogus-selector.patch,
  bugfix/fixup-trace_irq-breakage.patch
  [SECURITY] Handle an invalid LDT segment selector %cs (the xcs field)
  during ptrace single-step operations that can be used to trigger a
  NULL-pointer dereference causing an Oops.
  See CVE-2007-3731
* bugfix/prevent-stack-growth-into-hugetlb-region.patch
  [SECURITY] Prevent OOPS during stack expansion when the VMA crosses
  into address space reserved for hugetlb pages.
  See CVE-2007-3739
* bugfix/cifs-honor-umask.patch
  [SECURITY] Make CIFS honor a process' umask
  See CVE-2007-3740
* bugfix/amd64-zero-extend-32bit-ptrace.patch
  [SECURITY] Zero extend all registers after ptrace in 32-bit entry path.
  See CVE-2007-4573
* bugfix/jffs2-ACL-vs-mode-handling.patch
  [SECURITY] Write correct legacy modes to the medium on inode creation to
  prevent incorrect permissions upon remount.
  See CVE-2007-4849

Added:
   dists/etch/linux-2.6/debian/patches/bugfix/amd64-zero-extend-32bit-ptrace.patch
      - copied unchanged from r9564, /releases/linux-2.6/2.6.18.dfsg.1-13etch3/debian/patches/bugfix/amd64-zero-extend-32bit-ptrace.patch
   dists/etch/linux-2.6/debian/patches/bugfix/cifs-honor-umask.patch
      - copied unchanged from r9564, /releases/linux-2.6/2.6.18.dfsg.1-13etch3/debian/patches/bugfix/cifs-honor-umask.patch
   dists/etch/linux-2.6/debian/patches/bugfix/fixup-trace_irq-breakage.patch
      - copied unchanged from r9564, /releases/linux-2.6/2.6.18.dfsg.1-13etch3/debian/patches/bugfix/fixup-trace_irq-breakage.patch
   dists/etch/linux-2.6/debian/patches/bugfix/jffs2-ACL-vs-mode-handling.patch
      - copied unchanged from r9564, /releases/linux-2.6/2.6.18.dfsg.1-13etch3/debian/patches/bugfix/jffs2-ACL-vs-mode-handling.patch
   dists/etch/linux-2.6/debian/patches/bugfix/prevent-stack-growth-into-hugetlb-region.patch
      - copied unchanged from r9564, /releases/linux-2.6/2.6.18.dfsg.1-13etch3/debian/patches/bugfix/prevent-stack-growth-into-hugetlb-region.patch
   dists/etch/linux-2.6/debian/patches/bugfix/ptrace-handle-bogus-selector.patch
      - copied unchanged from r9564, /releases/linux-2.6/2.6.18.dfsg.1-13etch3/debian/patches/bugfix/ptrace-handle-bogus-selector.patch
   dists/etch/linux-2.6/debian/patches/series/13etch3
      - copied unchanged from r9564, /releases/linux-2.6/2.6.18.dfsg.1-13etch3/debian/patches/series/13etch3
Modified:
   dists/etch/linux-2.6/debian/changelog

Modified: dists/etch/linux-2.6/debian/changelog
==============================================================================
--- dists/etch/linux-2.6/debian/changelog	(original)
+++ dists/etch/linux-2.6/debian/changelog	Wed Sep 26 20:02:42 2007
@@ -1,3 +1,9 @@
+linux-2.6 (2.6.18.dfsg.1-15) stable; urgency=high
+
+  * Merge in changes from 2.6.18.dfsg.1-13etch3.
+
+ -- dann frazier <dannf at debian.org>  Tue, 25 Sep 2007 22:33:15 -0600
+
 linux-2.6 (2.6.18.dfsg.1-14) stable; urgency=high
 
   [ dann frazier ]
@@ -29,6 +35,31 @@
 
  -- dann frazier <dannf at debian.org>  Mon, 17 Sep 2007 16:56:07 -0600
 
+linux-2.6 (2.6.18.dfsg.1-13etch3) stable-security; urgency=high
+
+  * bugfix/ptrace-handle-bogus-selector.patch,
+    bugfix/fixup-trace_irq-breakage.patch
+    [SECURITY] Handle an invalid LDT segment selector %cs (the xcs field)
+    during ptrace single-step operations that can be used to trigger a
+    NULL-pointer dereference causing an Oops.
+    See CVE-2007-3731
+  * bugfix/prevent-stack-growth-into-hugetlb-region.patch
+    [SECURITY] Prevent OOPS during stack expansion when the VMA crosses
+    into address space reserved for hugetlb pages.
+    See CVE-2007-3739
+  * bugfix/cifs-honor-umask.patch
+    [SECURITY] Make CIFS honor a process' umask
+    See CVE-2007-3740
+  * bugfix/amd64-zero-extend-32bit-ptrace.patch
+    [SECURITY] Zero extend all registers after ptrace in 32-bit entry path.
+    See CVE-2007-4573
+  * bugfix/jffs2-ACL-vs-mode-handling.patch
+    [SECURITY] Write correct legacy modes to the medium on inode creation to
+    prevent incorrect permissions upon remount.
+    See CVE-2007-4849
+
+ -- dann frazier <dannf at debian.org>  Tue, 25 Sep 2007 22:33:15 -0600
+
 linux-2.6 (2.6.18.dfsg.1-13etch2) stable-security; urgency=high
 
   * bugfix/ipv4-fib_props-out-of-bounds.patch

More information about the Kernel-svn-changes mailing list