[kernel] r10178 - in dists/etch/linux-2.6/debian: . arch arch/alpha arch/alpha/vserver arch/amd64 arch/amd64/vserver arch/amd64/xen arch/amd64/xen-vserver arch/arm arch/hppa arch/i386 arch/i386/vserver arch/i386/xen arch/i386/xen-vserver arch/ia64 arch/mips arch/mipsel arch/powerpc arch/powerpc/vserver arch/s390 arch/s390/vserver arch/sparc arch/sparc/vserver bin patches/bugfix patches/features/all/vserver patches/series
Dann Frazier
dannf at alioth.debian.org
Thu Jan 24 23:56:30 UTC 2008
Author: dannf
Date: Thu Jan 24 23:56:30 2008
New Revision: 10178
Log:
merge in 2.6.18.dfsg.1-17etch1
Added:
dists/etch/linux-2.6/debian/patches/bugfix/fat-fix-compat-ioctls.patch
- copied unchanged from r10177, /releases/linux-2.6/2.6.18.dfsg.1-17etch1/debian/patches/bugfix/fat-fix-compat-ioctls.patch
dists/etch/linux-2.6/debian/patches/bugfix/fat-move-ioctl-compat-code.patch
- copied unchanged from r10177, /releases/linux-2.6/2.6.18.dfsg.1-17etch1/debian/patches/bugfix/fat-move-ioctl-compat-code.patch
dists/etch/linux-2.6/debian/patches/bugfix/i4l-isdn_ioctl-mem-overrun.patch
- copied unchanged from r10177, /releases/linux-2.6/2.6.18.dfsg.1-17etch1/debian/patches/bugfix/i4l-isdn_ioctl-mem-overrun.patch
dists/etch/linux-2.6/debian/patches/bugfix/proc-snd-page-alloc-mem-leak.patch
- copied unchanged from r10177, /releases/linux-2.6/2.6.18.dfsg.1-17etch1/debian/patches/bugfix/proc-snd-page-alloc-mem-leak.patch
dists/etch/linux-2.6/debian/patches/bugfix/vfs-use-access-mode-flag.patch
- copied unchanged from r10177, /releases/linux-2.6/2.6.18.dfsg.1-17etch1/debian/patches/bugfix/vfs-use-access-mode-flag.patch
dists/etch/linux-2.6/debian/patches/series/17etch1
- copied unchanged from r10177, /releases/linux-2.6/2.6.18.dfsg.1-17etch1/debian/patches/series/17etch1
Removed:
dists/etch/linux-2.6/debian/arch/alpha/abi-5.alpha-generic
dists/etch/linux-2.6/debian/arch/alpha/abi-5.alpha-legacy
dists/etch/linux-2.6/debian/arch/alpha/abi-5.alpha-smp
dists/etch/linux-2.6/debian/arch/alpha/vserver/abi-5.alpha
dists/etch/linux-2.6/debian/arch/amd64/abi-5.amd64
dists/etch/linux-2.6/debian/arch/amd64/vserver/abi-5.amd64
dists/etch/linux-2.6/debian/arch/amd64/xen-vserver/abi-5.amd64
dists/etch/linux-2.6/debian/arch/amd64/xen/abi-5.amd64
dists/etch/linux-2.6/debian/arch/arm/abi-5.footbridge
dists/etch/linux-2.6/debian/arch/arm/abi-5.iop32x
dists/etch/linux-2.6/debian/arch/arm/abi-5.ixp4xx
dists/etch/linux-2.6/debian/arch/arm/abi-5.rpc
dists/etch/linux-2.6/debian/arch/arm/abi-5.s3c2410
dists/etch/linux-2.6/debian/arch/hppa/abi-5.parisc
dists/etch/linux-2.6/debian/arch/hppa/abi-5.parisc-smp
dists/etch/linux-2.6/debian/arch/hppa/abi-5.parisc64
dists/etch/linux-2.6/debian/arch/hppa/abi-5.parisc64-smp
dists/etch/linux-2.6/debian/arch/i386/abi-5.486
dists/etch/linux-2.6/debian/arch/i386/abi-5.686
dists/etch/linux-2.6/debian/arch/i386/abi-5.686-bigmem
dists/etch/linux-2.6/debian/arch/i386/abi-5.amd64
dists/etch/linux-2.6/debian/arch/i386/abi-5.k7
dists/etch/linux-2.6/debian/arch/i386/vserver/abi-5.686
dists/etch/linux-2.6/debian/arch/i386/vserver/abi-5.k7
dists/etch/linux-2.6/debian/arch/i386/xen-vserver/abi-5.686
dists/etch/linux-2.6/debian/arch/i386/xen/abi-5.686
dists/etch/linux-2.6/debian/arch/ia64/abi-5.itanium
dists/etch/linux-2.6/debian/arch/ia64/abi-5.mckinley
dists/etch/linux-2.6/debian/arch/mips/abi-5.qemu
dists/etch/linux-2.6/debian/arch/mips/abi-5.r4k-ip22
dists/etch/linux-2.6/debian/arch/mips/abi-5.r5k-ip32
dists/etch/linux-2.6/debian/arch/mips/abi-5.sb1-bcm91250a
dists/etch/linux-2.6/debian/arch/mips/abi-5.sb1a-bcm91480b
dists/etch/linux-2.6/debian/arch/mipsel/abi-5.qemu
dists/etch/linux-2.6/debian/arch/mipsel/abi-5.r3k-kn02
dists/etch/linux-2.6/debian/arch/mipsel/abi-5.r4k-kn04
dists/etch/linux-2.6/debian/arch/mipsel/abi-5.r5k-cobalt
dists/etch/linux-2.6/debian/arch/mipsel/abi-5.sb1-bcm91250a
dists/etch/linux-2.6/debian/arch/mipsel/abi-5.sb1a-bcm91480b
dists/etch/linux-2.6/debian/arch/powerpc/abi-5.powerpc
dists/etch/linux-2.6/debian/arch/powerpc/abi-5.powerpc-miboot
dists/etch/linux-2.6/debian/arch/powerpc/abi-5.powerpc-smp
dists/etch/linux-2.6/debian/arch/powerpc/abi-5.powerpc64
dists/etch/linux-2.6/debian/arch/powerpc/abi-5.prep
dists/etch/linux-2.6/debian/arch/powerpc/vserver/abi-5.powerpc
dists/etch/linux-2.6/debian/arch/powerpc/vserver/abi-5.powerpc64
dists/etch/linux-2.6/debian/arch/s390/abi-5.s390
dists/etch/linux-2.6/debian/arch/s390/abi-5.s390x
dists/etch/linux-2.6/debian/arch/s390/vserver/abi-5.s390x
dists/etch/linux-2.6/debian/arch/sparc/abi-5.sparc32
dists/etch/linux-2.6/debian/arch/sparc/abi-5.sparc64
dists/etch/linux-2.6/debian/arch/sparc/abi-5.sparc64-smp
dists/etch/linux-2.6/debian/arch/sparc/vserver/abi-5.sparc64
Modified:
dists/etch/linux-2.6/debian/arch/defines
dists/etch/linux-2.6/debian/bin/abiupdate.py
dists/etch/linux-2.6/debian/changelog
dists/etch/linux-2.6/debian/patches/features/all/vserver/vs2.0.2.2-rc9.patch
Modified: dists/etch/linux-2.6/debian/arch/defines
==============================================================================
--- dists/etch/linux-2.6/debian/arch/defines (original)
+++ dists/etch/linux-2.6/debian/arch/defines Thu Jan 24 23:56:30 2008
@@ -1,5 +1,5 @@
[abi]
-abiname: 5
+abiname: 6
[base]
arches:
Modified: dists/etch/linux-2.6/debian/bin/abiupdate.py
==============================================================================
--- dists/etch/linux-2.6/debian/bin/abiupdate.py (original)
+++ dists/etch/linux-2.6/debian/bin/abiupdate.py Thu Jan 24 23:56:30 2008
@@ -113,6 +113,7 @@
import urllib2
u = url(self.source, filename)
filename_out = self.dir + "/" + filename
+ print u
f_in = urllib2.urlopen(u)
f_out = file(filename_out, 'w')
while 1:
Modified: dists/etch/linux-2.6/debian/changelog
==============================================================================
--- dists/etch/linux-2.6/debian/changelog (original)
+++ dists/etch/linux-2.6/debian/changelog Thu Jan 24 23:56:30 2008
@@ -11,6 +11,29 @@
-- dann frazier <dannf at debian.org> Fri, 18 Jan 2008 17:19:59 -0700
+linux-2.6 (2.6.18.dfsg.1-17etch1) stable-security; urgency=high
+
+ * bugfix/i4l-isdn_ioctl-mem-overrun.patch
+ [SECURITY] Fix potential isdn ioctl memory overrun
+ See CVE-2007-6151
+ * bugfix/vfs-use-access-mode-flag.patch
+ [SECURITY] Use the access mode flag instead of the open flag when
+ testing access mode for a directory. Modify
+ features/all/vserver/vs2.0.2.2-rc9.patch to apply on top of this
+ See CVE-2008-0001
+ * bugfix/fat-move-ioctl-compat-code.patch, bugfix/fat-fix-compat-ioctls.patch
+ [SECURITY][ABI Changer] Fix kernel_dirent corruption in the compat layer
+ for fat ioctls
+ See CVE-2007-2878
+ * bugfix/proc-snd-page-alloc-mem-leak.patch
+ [SECURITY][ABI Changer] Fix an issue in the alsa subsystem that allows a
+ local user to read potentially sensitive kernel memory from the proc
+ filesystem
+ See CVE-2007-4571
+ * Bump ABI to 6.
+
+ -- dann frazier <dannf at debian.org> Tue, 22 Jan 2008 10:07:04 -0700
+
linux-2.6 (2.6.18.dfsg.1-17) stable; urgency=high
* [futex] Fix address computation in compat code, fixing hangs
Modified: dists/etch/linux-2.6/debian/patches/features/all/vserver/vs2.0.2.2-rc9.patch
==============================================================================
--- dists/etch/linux-2.6/debian/patches/features/all/vserver/vs2.0.2.2-rc9.patch (original)
+++ dists/etch/linux-2.6/debian/patches/features/all/vserver/vs2.0.2.2-rc9.patch Thu Jan 24 23:56:30 2008
@@ -4775,9 +4775,9 @@
return -EACCES;
flag &= ~O_TRUNC;
-- } else if (IS_RDONLY(inode) && (flag & FMODE_WRITE))
+- } else if (IS_RDONLY(inode) && (acc_mode & MAY_WRITE))
+ } else if ((IS_RDONLY(inode) || MNT_IS_RDONLY(nd->mnt))
-+ && (flag & FMODE_WRITE))
++ && (acc_mode & MAY_WRITE))
return -EROFS;
/*
* An append-only file must be opened in append mode for writing.
More information about the Kernel-svn-changes
mailing list