[kernel] r12551 - people/waldi/xen-extra/linux-2.6.18-xen-3.3/debian
Bastian Blank
waldi at alioth.debian.org
Fri Jan 9 10:36:46 UTC 2009
Author: waldi
Date: Fri Jan 9 10:36:45 2009
New Revision: 12551
Log:
* debian: Update to 2.6.18.dfsg.1-23etch1.
* debian/changelog: Update.
Modified:
people/waldi/xen-extra/linux-2.6.18-xen-3.3/debian/ (props changed)
people/waldi/xen-extra/linux-2.6.18-xen-3.3/debian/changelog
Modified: people/waldi/xen-extra/linux-2.6.18-xen-3.3/debian/changelog
==============================================================================
--- people/waldi/xen-extra/linux-2.6.18-xen-3.3/debian/changelog (original)
+++ people/waldi/xen-extra/linux-2.6.18-xen-3.3/debian/changelog Fri Jan 9 10:36:45 2009
@@ -1,18 +1,64 @@
-linux-2.6.18-xen-3.3 (2.6.18.dfsg.1-23+xen.2) kernel-waldi-xen-extra; urgency=low
+linux-2.6.18-xen-3.3 (2.6.18.dfsg.1-23etch1+xen.1) kernel-waldi-xen-extra; urgency=low
+ * Update Xen patch to revision 748f324a4b2d62d89fe40c4aa52861977e1a2cae of
+ the linux-2.6.18-xen repository, 3.3 release.
+ * Overtake hvc console by default.
+ * Remove 4gb segments warning completely.
* [amd64] Again include i386 headers.
* [i386] Fix pseudo hwcap value to match newer kernels.
- -- Bastian Blank <waldi at debian.org> Sun, 23 Nov 2008 13:07:24 +0100
+ -- Bastian Blank <waldi at debian.org> Fri, 09 Jan 2009 11:34:53 +0100
-linux-2.6.18-xen-3.3 (2.6.18.dfsg.1-23+xen.1) kernel-waldi-xen-extra; urgency=low
+linux-2.6 (2.6.18.dfsg.1-23etch1) stable-security; urgency=high
- * Update Xen patch to revision 748f324a4b2d62d89fe40c4aa52861977e1a2cae of
- the linux-2.6.18-xen repository, 3.3 release.
- * Overtake hvc console by default.
- * Remove 4gb segments warning completely.
+ * Fix missing boundary checks in syscall/syscall32_nopage():
+ - bugfix/add-install_special_mapping.patch
+ - bugfix/i386-vdso-use_install_special_mapping.patch
+ - bugfix/x86_64-ia32-vDSO-use-install_special_mapping.patch
+ - features/all/xen/vdso-use_install_special_mapping.patch
+ See CVE-2008-3527
+ * Modify feature patches to apply on top of the fixes for
+ CVE-2008-3527:
+ - features/all/vserver/vs2.0.2.2-rc9.patch
+ - features/all/xen/fedora-2.6.18-36186.patch
+ - features/all/xen/vserver-update.patch
+ * Don't allow splicing to files opened with O_APPEND:
+ - bugfix/dont-allow-splice-to-files-opened-with-O_APPEND.patch
+ See CVE-2008-4554
+ * Avoid printk floods when reading corrupted ext[2,3] directories
+ - bugfix/ext2-avoid-corrupted-directory-printk-floods.patch
+ - bugfix/ext3-avoid-corrupted-directory-printk-floods.patch
+ See CVE-2008-3528
+ * Fix oops in SCTP
+ - bugfix/sctp-fix-oops-when-INIT-ACK-indicates-that-peer-doesnt-support-AUTH.patch
+ See CVE-2008-4576
+ * Fix buffer overflow in hfsplus
+ - bugfix/hfsplus-fix-Buffer-overflow-with-a-corrupted-image.patch
+ See CVE-2008-4933
+ * Fix BUG() in hfsplus
+ - bugfix/hfsplus-check_read_mapping_page-return-value.patch
+ See CVE-2008-4934
+ * Fix stack corruption in hfs
+ - bugfix/hfs-fix-namelength-memory-corruption.patch
+ See CVE-2008-5025
+ * Fix recursive descent in __scm_destroy
+ - bugfix/af_unix-fix-garbage-collector-races.patch
+ - bugfix/af_unix-convert-socks-to-unix_socks.patch
+ - bugfix/net-unix-fix-inflight-counting-bug-in-garbage-collector.patch
+ - bugfix/net-fix-recursive-descent-in-__scm_destroy.patch
+ See CVE-2008-5029
+ * Make sendmsg() block during UNIX garbage collection:
+ - bugfix/net-unix-gc-fix-soft-lockups-oom-issues.patch
+ See CVE-2008-5300
+ * Fix DoS when calling svc_listen twice on the same socket while reading
+ /proc/net/atm/*vc:
+ - bugfix/atm-duplicate-listen-on-socket-corrupts-the-vcc-table.patch
+ See CVE-2008-5079
+ * Fix race conditions between inotify removal and umount
+ - bugfix/inotify-watch-removal-umount-races.patch
+ See CVE-2008-5182
- -- Bastian Blank <waldi at debian.org> Sat, 18 Oct 2008 11:14:59 +0200
+ -- dann frazier <dannf at debian.org> Thu, 11 Dec 2008 08:38:28 -0700
linux-2.6 (2.6.18.dfsg.1-23) stable; urgency=high
More information about the Kernel-svn-changes
mailing list