[kernel] r12484 - in dists/etch-security/linux-2.6/debian: . patches/bugfix patches/series

Dann Frazier dannf at alioth.debian.org
Sat Dec 6 17:38:37 UTC 2008 

Author: dannf
Date: Sat Dec  6 17:38:36 2008
New Revision: 12484

Log:
* Fix DoS when calling svc_listen twice on the same socket while reading
  /proc/net/atm/*vc:
   - bugfix/atm-duplicate-listen-on-socket-corrupts-the-vcc-table.patch
  See CVE-2008-5079

Added:
   dists/etch-security/linux-2.6/debian/patches/bugfix/atm-duplicate-listen-on-socket-corrupts-the-vcc-table.patch   (props changed)
      - copied unchanged from r12483, /dists/sid/linux-2.6/debian/patches/bugfix/all/atm-duplicate-listen-on-socket-corrupts-the-vcc-table.patch
Modified:
   dists/etch-security/linux-2.6/debian/changelog
   dists/etch-security/linux-2.6/debian/patches/series/23etch1

Modified: dists/etch-security/linux-2.6/debian/changelog
==============================================================================
--- dists/etch-security/linux-2.6/debian/changelog	(original)
+++ dists/etch-security/linux-2.6/debian/changelog	Sat Dec  6 17:38:36 2008
@@ -40,8 +40,12 @@
   * Make sendmsg() block during UNIX garbage collection:
      - bugfix/net-unix-gc-fix-soft-lockups-oom-issues.patch
     See CVE-2008-5300
+  * Fix DoS when calling svc_listen twice on the same socket while reading
+    /proc/net/atm/*vc:
+     - bugfix/atm-duplicate-listen-on-socket-corrupts-the-vcc-table.patch
+    See CVE-2008-5079
 
- -- dann frazier <dannf at debian.org>  Fri, 05 Dec 2008 23:00:02 -0700
+ -- dann frazier <dannf at debian.org>  Sat, 06 Dec 2008 10:29:25 -0700
 
 linux-2.6 (2.6.18.dfsg.1-23) stable; urgency=high
 

Modified: dists/etch-security/linux-2.6/debian/patches/series/23etch1
==============================================================================
--- dists/etch-security/linux-2.6/debian/patches/series/23etch1	(original)
+++ dists/etch-security/linux-2.6/debian/patches/series/23etch1	Sat Dec  6 17:38:36 2008
@@ -13,3 +13,4 @@
 + bugfix/net-unix-fix-inflight-counting-bug-in-garbage-collector.patch
 + bugfix/net-fix-recursive-descent-in-__scm_destroy.patch
 + bugfix/net-unix-gc-fix-soft-lockups-oom-issues.patch
++ bugfix/atm-duplicate-listen-on-socket-corrupts-the-vcc-table.patch

More information about the Kernel-svn-changes mailing list