an unknown chunk type.
+See CVE-2007-2876
* bugfix/i965-secure-batchbuffer.patch
[SECURITY] Fix i965 secured batchbuffer usage
See CVE-2007-3851
- -- dann frazier [EMAIL PROTECTED] Tue, 7 Aug 2007 16:04:41 -0600
+ -- dann frazier [EMAIL PROTECTED] Fri, 10 Aug 2007 19:22:14 -0600
frazier [EMAIL PROTECTED] Sun, 15 Jul 2007 14:01:50 -0600
+ -- dann frazier [EMAIL PROTECTED] Tue, 7 Aug 2007 16:04:41 -0600
linux-2.6 (2.6.18.dfsg.1-13) stable; urgency=high
Added:
dists/etch-security/linux-2.6/debian/patches/bugfix/i965-secure-batchbuffer.patch
2.6.18 by dann frazier [EMAIL PROTECTED]
+
+diff -urpN linux-source-2.6.18.orig/drivers/usb/misc/usblcd.c
linux-source-2.6.18/drivers/usb/misc/usblcd.c
+--- linux-source-2.6.18.orig/drivers/usb/misc/usblcd.c 2006-09-19
21:42:06.0 -0600
linux-source-2.6.18/drivers/usb/misc/usblcd.c
Author: dannf
Date: Tue Aug 7 23:30:35 2007
New Revision: 9286
Log:
missed struct path adaption
Modified:
dists/etch-security/linux-2.6/debian/patches/bugfix/random-fix-seeding-with-zero-entropy.patch
Modified:
@@
+linux-2.6 (2.6.22-3) UNRELEASED; urgency=low
+
+ * [ia64] Config cleanup in 2.6.22-2 broke the ABI; revert most of it
+for now (everything but the efivars and sym53c8xx modules)
+
+ -- dann frazier [EMAIL PROTECTED] Wed, 25 Jul 2007 14:04:02 -0600
+
linux-2.6 (2.6.22-2) unstable; urgency=low
-2007-3642)
[ dann frazier ]
- * [ia64] Re-enable the sym2 module which got unintentionally dropped
-somewhere between 2.6.21 and 2.6.22
+ * [ia64] Re-enable various config options which were unintentionally
+disabled somewhere between 2.6.21 and 2.6.22
* [ia64] Re-enable vserver
)
- -- dann frazier [EMAIL PROTECTED] Wed, 18 Jul 2007 02:28:15 -0600
+ -- dann frazier [EMAIL PROTECTED] Wed, 18 Jul 2007 02:33:30 -0600
linux-2.6 (2.6.18.dfsg.1-13) stable; urgency=high
Added: dists/etch/linux-2.6/debian/patches/bugfix/bluetooth-rfcomm-panic.patch
/linux-2.6/debian/changelogWed Jul 18 20:50:40 2007
@@ -20,8 +20,10 @@
[ dann frazier ]
* [ia64] Re-enable the sym2 module which got unintentionally dropped
somewhere between 2.6.21 and 2.6.22
+ * [ia64] Re-enable vserver flavour - this was somehow lost when 2.6.22
+was merged
+ * bugfix/nf_conntrack_sctp-null-deref.patch
+[SECURITY] Fix remotely triggerable NULL pointer dereference
+by sending an unknown chunk type.
- -- dann frazier [EMAIL PROTECTED] Fri, 13 Jul 2007 00:06:31 -0600
+ -- dann frazier [EMAIL PROTECTED] Sun, 15 Jul 2007 14:01:50 -0600
linux
frazier [EMAIL PROTECTED] Thu, 12 Jul 2007 23:30:55 -0600
+ -- dann frazier [EMAIL PROTECTED] Fri, 13 Jul 2007 00:06:31 -0600
linux-2.6 (2.6.18.dfsg.1-13) stable; urgency=high
Added:
dists/etch-security/linux-2.6/debian/patches/bugfix/random-fix-error-in-entropy-extraction.patch
2007
@@ -19,7 +19,10 @@
[ Martin Michlmayr ]
* [mips] Add patch from Yoichi Yuasa to fix IDE on Cobalt.
- -- Bastian Blank [EMAIL PROTECTED] Wed, 11 Jul 2007 14:12:35 +0200
+ [ dann frazier ]
+ * Enable vserver flavour for ia64 (closes: #423232)
+
+ -- dann frazier [EMAIL PROTECTED] Thu
-leaks-2.diff
[SECURITY] Fix information leaks in setsockopt() implementations
See CVE-2007-1353
+ * 246_dn_fib-out-of-bounds.diff
+[SECURITY] Fix out of bounds condition in dn_fib_props[]
+See CVE-2007-2172
- -- dann frazier [EMAIL PROTECTED] Wed, 06 Jun 2007 18:19:35 -0600
frazier [EMAIL PROTECTED] Wed, 11 Jul 2007 00:28:15 -0600
+ -- dann frazier [EMAIL PROTECTED] Thu, 12 Jul 2007 23:30:55 -0600
linux-2.6 (2.6.18.dfsg.1-13) stable; urgency=high
Added:
dists/etch-security/linux-2.6/debian/patches/bugfix/dn_fib-out-of-bounds.patch
in dn_fib_props[]
+See CVE-2007-2172
- -- dann frazier [EMAIL PROTECTED] Thu, 05 Jul 2007 22:52:01 -0600
+ -- dann frazier [EMAIL PROTECTED] Thu, 12 Jul 2007 23:36:16 -0600
kernel-source-2.6.8 (2.6.8-17) oldstable; urgency=high
Modified:
dists/sarge-security/kernel/source/kernel-source
it
See CVE-2007-2525
+ * bugfix/nf_conntrack_h323-bounds-checking.patch
+[SECURITY] nf_conntrack_h323: add checking of out-of-range on choices'
+index values
+See CVE-2007-3642
- -- dann frazier [EMAIL PROTECTED] Thu, 05 Jul 2007 22:35:14 -0600
+ -- dann frazier [EMAIL PROTECTED
Author: dannf
Date: Tue Jul 10 16:48:35 2007
New Revision: 9112
Log:
add cve reference
Modified:
dists/sid/linux-2.6/debian/changelog
Modified: dists/sid/linux-2.6/debian/changelog
==
---
write in the usblcd driver
See CVE-2007-3513
+ * bugfix/pppoe-socket-release-mem-leak.patch
+[SECURITY] fix unpriveleged memory leak when a PPPoE socket is released
+after connect but before PPPIOCGCHAN ioctl is called upon it
+See CVE-2007-2525
- -- dann frazier [EMAIL PROTECTED
in compat_sys_mount triggered by NULL data_page
See CVE-2006-7203
+ * pppoe-socket-release-mem-leak.dpatch
+[SECURITY] fix unpriveleged memory leak when a PPPoE socket is released
+after connect but before PPPIOCGCHAN ioctl is called upon it
+See CVE-2007-2525
- -- dann frazier [EMAIL PROTECTED
See CVE-2007-2878
+ * bugfix/usblcd-limit-memory-consumption.patch
+[SECURITY] limit memory consumption during write in the usblcd driver
+See CVE-2007-3513
- -- dann frazier [EMAIL PROTECTED] Sat, 23 Jun 2007 18:38:19 +0100
+ -- dann frazier [EMAIL PROTECTED] Wed, 04 Jul 2007 08:57
-security; urgency=high
* bugfix/bluetooth-l2cap-hci-info-leaks.patch
[SECURITY] Fix information leaks in setsockopt() implementations
@@ -12,6 +12,46 @@
-- dann frazier [EMAIL PROTECTED] Wed, 04 Jul 2007 08:57:36 -0600
+linux-2.6 (2.6.18.dfsg.1-13) stable; urgency=high
+
+ [ Bastian
Author: dannf
Date: Wed Jun 27 09:34:47 2007
New Revision: 9035
Log:
tag 2.6.18-4etch1
Added:
releases/linux-modules-nonfree-2.6/2.6.18-4etch1/
- copied from r9034, /dists/etch/linux-modules-nonfree-2.6/
___
Kernel-svn-changes mailing list
Author: dannf
Date: Wed Jun 27 10:34:57 2007
New Revision: 9036
Log:
ndiswrapper was missing
Modified:
dists/sarge-security/dependent-pkgs
Modified: dists/sarge-security/dependent-pkgs
==
---
Author: dannf
Date: Tue Jun 26 20:35:52 2007
New Revision: 9032
Log:
use not-flavours instead of not-flavour
Modified:
dists/etch/linux-modules-nonfree-2.6/kqemu/defines
Modified: dists/etch/linux-modules-nonfree-2.6/kqemu/defines
/linux-modules-extra-2.6/debian/changelogMon Jun 25
22:00:08 2007
@@ -1,3 +1,9 @@
+linux-modules-extra-2.6 (2.6.18-8lenny1) testing; urgency=low
+
+ * Building against 2.6.18-5.
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 25 Jun 2007 22:56:56 +0100
+
linux-modules-extra-2.6 (2.6.18-8
-leaks.patch
[SECURITY] Fix information leaks in setsockopt() implementations
See CVE-2007-1353
+ * bugfix/fat-move-ioctl-compat-code.patch, bugfix/fat-fix-compat-ioctls.patch
+[SECURITY] Fix kernel_dirent corruption in the compat layer for fat ioctls
+See CVE-2007-2878
- -- dann frazier
:12 2007
@@ -1,3 +1,11 @@
+kernel-source-2.6.8 (2.6.8-17sarge1) UNRELEASED; urgency=high
+
+ * compat_sys_mount-NULL-data_page.dpatch
+[SECURITY] Fix oops in compat_sys_mount triggered by NULL data_page
+See CVE-2006-7203
+
+ -- dann frazier [EMAIL PROTECTED] Tue, 19 Jun 2007 01:02:58 +0100
-nonfree-2.6/debian/changelog Mon Jun 4
16:54:36 2007
@@ -1,3 +1,9 @@
+linux-modules-nonfree-2.6 (2.6.18-4etch1) stable; urgency=high
+
+ * Building against 2.6.18-5.
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 04 Jun 2007 10:32:37 -0600
+
linux-modules-nonfree-2.6 (2.6.18-4) unstable; urgency
Author: dannf
Date: Thu May 31 20:39:10 2007
New Revision: 8846
Log:
create etch branch of linux-modules-extra-2.6
Added:
dists/etch/linux-modules-extra-2.6/
- copied from r8845, /releases/linux-modules-extra-2.6/2.6.18-7/
Modified:
dists/etch/linux-modules-extra-2.6/debian/changelog
Author: dannf
Date: Thu May 31 20:40:12 2007
New Revision: 8847
Log:
retroactively tag 2.6.18-7+etch2
Added:
releases/linux-modules-extra-2.6/2.6.18-7+etch2/
- copied from r8846, /dists/etch/linux-modules-extra-2.6/
___
Kernel-svn-changes
+
+ * Building against 2.6.18-5
+
+ -- dann frazier [EMAIL PROTECTED] Thu, 31 May 2007 14:43:49 -0600
+
linux-modules-extra-2.6 (2.6.18-7+etch2) testing; urgency=medium
* Rebuild against testing squashfs modules sources.
Modified: dists/etch/linux-modules-extra-2.6/debian/rules.defs
Author: dannf
Date: Thu May 31 23:23:03 2007
New Revision: 8851
Log:
retroactively tag 2.6.18-4+etch1
Added:
releases/linux-modules-contrib-2.6/2.6.18-4+etch1/
- copied from r8850, /dists/etch/linux-modules-contrib-2.6/
___
Kernel-svn-changes
Author: dannf
Date: Thu May 31 23:25:27 2007
New Revision: 8853
Log:
tag 2.6.18-4+etch2
Added:
releases/linux-modules-contrib-2.6/2.6.18-4+etch2/
- copied from r8852, /dists/etch/linux-modules-contrib-2.6/
___
Kernel-svn-changes mailing list
Author: dannf
Date: Tue May 29 15:30:55 2007
New Revision: 8814
Log:
tag 6etch1
Added:
releases/linux-latest-2.6/6etch1/
- copied from r8813, /dists/etch/linux-latest-2.6/
___
Kernel-svn-changes mailing list
/lenny/linux-latest-2.6/debian/changelog (original)
+++ dists/lenny/linux-latest-2.6/debian/changelog Tue May 29 15:33:25 2007
@@ -1,8 +1,8 @@
-linux-latest-2.6 (6etch1) stable; urgency=high
+linux-latest-2.6 (6lenny1) testing; urgency=high
* Update to 2.6.18-5.
- -- dann frazier
Author: dannf
Date: Tue May 29 15:47:28 2007
New Revision: 8817
Log:
tag 6lenny1
Added:
releases/linux-latest-2.6/6lenny1/
- copied from r8816, /dists/lenny/linux-latest-2.6/
___
Kernel-svn-changes mailing list
Author: dannf
Date: Sat May 26 08:39:02 2007
New Revision: 8798
Log:
dropping patch since the issue it fixes sounds like less than important severity
Removed:
dists/sarge/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/tcp-dont-over-clamp-window-in-tcp_clamp_window.dpatch
Modified:
-pci_irq-elcr.dpatch:
+Make sure we call acpi_register_gsi() even for default PCI interrupt
+assignment. That's the part that keeps track of the ELCR register, and we
+want to make sure that the PCI interrupts are properly marked level/low.
+
+ [ dann frazier ]
+ * Merge in applicable
-2007-1353
- -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 17:04:51 -0600
+ -- dann frazier [EMAIL PROTECTED] Tue, 22 May 2007 23:58:34 -0600
kernel-source-2.4.27 (2.4.27-10sarge5) stable-security; urgency=high
Added:
dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27
Author: dannf
Date: Wed May 23 23:43:48 2007
New Revision: 8738
Log:
tag 2.6.18.dfsg.1-13lenny1
Added:
releases/linux-2.6/2.6.18.dfsg.1-13lenny1/
- copied from r8737, /dists/lenny/linux-2.6/
___
Kernel-svn-changes mailing list
.
- -- maximilian attems [EMAIL PROTECTED] Wed, 23 May 2007 12:38:57 +0200
+ [ dann frazier ]
+ * Add Xen licensing info to the copyright file. (closes: #368912)
+
+ -- dann frazier [EMAIL PROTECTED] Wed, 23 May 2007 18:41:33 -0600
linux-2.6 (2.6.21-3) UNRELEASED; urgency=low
Modified: dists/trunk/linux
() implementations
+See CVE-2007-1353
+
+ -- dann frazier [EMAIL PROTECTED] Thu, 17 May 2007 13:58:07 -0600
+
linux-2.6 (2.6.18.dfsg.1-12etch2) stable-security; urgency=high
* bugfix/nfnetlink_log-null-deref.patch
Added:
dists/etch-security/linux-2.6/debian/patches/bugfix/bluetooth-l2cap
Author: dannf
Date: Fri May 11 17:22:12 2007
New Revision: 8569
Removed:
dists/etch/linux-2.6/debian/patches/bugfix/ipv6-disallow-RH0-by-default.patch
Modified:
dists/etch/linux-2.6/debian/changelog
dists/etch/linux-2.6/debian/patches/series/13
Log:
revert r8559 for now due to a report
PROTECTED]
---
-Backported to Debian's 2.6.18 by dann frazier with help from Vlad Yasevich
+Backported to Debian's 2.6.18 by dann frazier and Vlad Yasevich
-diff -urN linux-source-2.6.18.orig/Documentation/networking/ip-sysctl.txt
linux-source-2.6.18/Documentation/networking/ip-sysctl.txt
Author: dannf
Date: Fri May 11 01:15:54 2007
New Revision: 8568
Modified:
dists/trunk/linux-2.6/debian/changelog
Log:
merge in r8500 for consistency
Modified: dists/trunk/linux-2.6/debian/changelog
==
---
Author: dannf
Date: Fri May 4 21:14:30 2007
New Revision: 8562
Added:
releases/linux-2.6/2.6.18.dfsg.1-12etch2/
- copied from r8561, dists/etch-security/linux-2.6/
Log:
tag 2.6.18.dfsg.1-12etch2
___
Kernel-svn-changes mailing list
/changelog
==
--- dists/etch/linux-2.6/debian/changelog (original)
+++ dists/etch/linux-2.6/debian/changelog Fri May 4 21:16:53 2007
@@ -36,6 +36,24 @@
-- dann frazier [EMAIL PROTECTED] Tue, 01 May 2007 19:11:48
)
[ maximilian attems ]
* Backport support for i965 to agp too. (closes: #406111)
@@ -34,7 +36,7 @@
[ Martin Michlmayr ]
* Fix wrong checksum for split TCP packets on 64-bit MIPS. (closes: #421283)
- -- dann frazier [EMAIL PROTECTED] Tue, 01 May 2007 19:11:48 -0600
+ -- dann frazier
Author: dannf
Date: Thu May 3 17:01:33 2007
New Revision: 8561
Added:
dists/etch/linux-2.6/debian/patches/bugfix/gdth_copy_cmd-oops-fix.patch
Log:
add missing patch, thx maks
Added: dists/etch/linux-2.6/debian/patches/bugfix/gdth_copy_cmd-oops-fix.patch
Author: dannf
Date: Tue May 1 20:24:12 2007
New Revision: 8539
Added:
releases/kernel/alpha/kernel-image-2.6.8-alpha-2.6.8/2.6.8-16sarge7/
- copied from r8538,
dists/sarge-security/kernel/alpha/kernel-image-2.6.8-alpha-2.6.8/
Log:
Tagging kernel-image-2.6.8-alpha-2.6.8 2.6.8-16sarge7
Author: dannf
Date: Tue May 1 20:24:27 2007
New Revision: 8540
Added:
releases/kernel/alpha/kernel-latest-2.6-alpha/101sarge2/
- copied from r8539,
dists/sarge-security/kernel/alpha/kernel-latest-2.6-alpha/
Log:
Tagging kernel-latest-2.6-alpha 101sarge2
Author: dannf
Date: Tue May 1 20:24:40 2007
New Revision: 8541
Added:
releases/kernel/amd64/kernel-image-2.6.8-amd64-2.6.8/2.6.8-16sarge7/
- copied from r8540,
dists/sarge-security/kernel/amd64/kernel-image-2.6.8-amd64-2.6.8/
Log:
Tagging kernel-image-2.6.8-amd64-2.6.8 2.6.8-16sarge7
Author: dannf
Date: Tue May 1 20:25:07 2007
New Revision: 8543
Added:
releases/kernel/hppa/kernel-image-2.6.8-hppa-2.6.8/2.6.8-6sarge7/
- copied from r8542,
dists/sarge-security/kernel/hppa/kernel-image-2.6.8-hppa-2.6.8/
Log:
Tagging kernel-image-2.6.8-hppa-2.6.8 2.6.8-6sarge7
Author: dannf
Date: Tue May 1 20:25:40 2007
New Revision: 8545
Added:
releases/kernel/i386/kernel-image-2.6.8-i386-2.6.8/2.6.8-16sarge7/
- copied from r8544,
dists/sarge-security/kernel/i386/kernel-image-2.6.8-i386-2.6.8/
Log:
Tagging kernel-image-2.6.8-i386-2.6.8 2.6.8-16sarge7
Author: dannf
Date: Tue May 1 20:25:54 2007
New Revision: 8546
Added:
releases/kernel/i386/kernel-latest-2.6-i386/101sarge2/
- copied from r8545,
dists/sarge-security/kernel/i386/kernel-latest-2.6-i386/
Log:
Tagging kernel-latest-2.6-i386 101sarge2
Author: dannf
Date: Tue May 1 20:26:44 2007
New Revision: 8550
Added:
releases/kernel/s390/kernel-image-2.6.8-s390-2.6.8/2.6.8-5sarge7/
- copied from r8549,
dists/sarge-security/kernel/s390/kernel-image-2.6.8-s390-2.6.8/
Log:
Tagging kernel-image-2.6.8-s390-2.6.8 2.6.8-5sarge7
Author: dannf
Date: Tue May 1 20:27:43 2007
New Revision: 8553
Added:
releases/kernel/sparc/kernel-image-2.6.8-sparc-2.6.8/2.6.8-15sarge7/
- copied from r8552,
dists/sarge-security/kernel/sparc/kernel-image-2.6.8-sparc-2.6.8/
Log:
Tagging kernel-image-2.6.8-sparc-2.6.8 2.6.8-15sarge7
route headers by default. Can be re-enabled via
-a sysctl interface.
-See CVE-2007-2242
- -- dann frazier [EMAIL PROTECTED] Tue, 01 May 2007 14:16:33 -0600
+ -- dann frazier [EMAIL PROTECTED] Tue, 01 May 2007 08:34:18 -0600
linux-2.6 (2.6.18.dfsg.1-12etch1) stable-security; urgency=high
Author: dannf
Date: Wed May 2 00:27:51 2007
New Revision: 8558
Modified:
dists/etch-security/linux-2.6/debian/changelog
Log:
prepare for release
Modified: dists/etch-security/linux-2.6/debian/changelog
==
---
MIPS. (closes: #421283)
- -- maximilian attems [EMAIL PROTECTED] Tue, 24 Apr 2007 20:13:49 +0200
+ -- dann frazier [EMAIL PROTECTED] Tue, 01 May 2007 19:09:28 -0600
linux-2.6 (2.6.18.dfsg.1-12etch1) stable-security; urgency=high
Modified: dists/etch/linux-2.6/debian/patches/series/13
dereference in
+nfulnl_recv_config()
+See CVE-2007-1496
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 30 Apr 2007 17:20:14 -0600
+
linux-2.6 (2.6.18.dfsg.1-12etch1) stable-security; urgency=high
* bugfix/core-dump-unreadable-PT_INTERP.patch
Added:
dists/etch-security/linux-2.6/debian
unreadable (but executable) files by triggering a core dump.
+ See CVE-2007-0958
+* appletalk-length-mismatch.dpatch
+ [SECURITY] Fix a remote DoS (crash) in appletalk
+ Depends upon appletalk-endianness-annotations.dpatch
+ See CVE-2007-1357
+
+ -- dann frazier [EMAIL PROTECTED
(but executable) files by triggering a core dump.
+ See CVE-2007-0958
+* appletalk-length-mismatch.dpatch
+ [SECURITY] Fix a remote DoS (crash) in appletalk
+ Depends upon appletalk-endianness-annotations.dpatch
+ See CVE-2007-1357
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 23 Apr
Author: dannf
Date: Mon Apr 16 19:00:06 2007
New Revision: 8481
Modified:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/appletalk-endianness-annotations.dpatch
Log:
buildfix - __be16 annotation didn't exist in 2.6.8
Modified:
Author: dannf
Date: Mon Apr 16 21:44:38 2007
New Revision: 8483
Modified:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/core-dump-unreadable-PT_INTERP.dpatch
Log:
typo fix
Modified:
(but executable) files by triggering a core dump.
+ See CVE-2007-0958
+* appletalk-length-mismatch.dpatch
+ [SECURITY] Fix a remote DoS (crash) in appletalk
+ Depends upon appletalk-endianness-annotations.dpatch
+ See CVE-2007-1357
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 16 Apr
Author: dannf
Date: Mon Apr 16 22:44:55 2007
New Revision: 8486
Modified:
dists/sarge-security/kernel/ia64/kernel-image-2.6.8-ia64-2.6.8/debian/changelog
Log:
s/stable/oldstable/
Modified:
dists/sarge-security/kernel/ia64/kernel-image-2.6.8-ia64-2.6.8/debian/changelog
unreadable (but executable) files by triggering a core dump.
+ See CVE-2007-0958
+* appletalk-length-mismatch.dpatch
+ [SECURITY] Fix a remote DoS (crash) in appletalk
+ Depends upon appletalk-endianness-annotations.dpatch
+ See CVE-2007-1357
+
+ -- dann frazier [EMAIL PROTECTED
-0958
+* appletalk-length-mismatch.dpatch
+ [SECURITY] Fix a remote DoS (crash) in appletalk
+ Depends upon appletalk-endianness-annotations.dpatch
+ See CVE-2007-1357
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 16 Apr 2007 17:08:07 -0700
+
kernel-patch-powerpc-2.6.8 (2.6.8-12sarge6
(but executable) files by triggering a core dump.
+ See CVE-2007-0958
+* appletalk-length-mismatch.dpatch
+ [SECURITY] Fix a remote DoS (crash) in appletalk
+ Depends upon appletalk-endianness-annotations.dpatch
+ See CVE-2007-1357
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 16 Apr
Author: dannf
Date: Wed Apr 11 19:46:23 2007
New Revision: 8467
Added:
dists/sid/linux-2.6/debian/patches/series/2-extra
Modified:
dists/sid/linux-2.6/debian/patches/series/2
Log:
make parisc patch arch-specific. This is just a temporary workaround due to
conflicts between the vserver and
/sid/linux-2.6/debian/changelog(original)
+++ dists/sid/linux-2.6/debian/changelogTue Apr 10 20:07:43 2007
@@ -6,7 +6,7 @@
[ dann frazier ]
* [hppa] Add parisc arch patch from Kyle McMartin
- * Enable CONFIG_TULIP_MMIO on hppa. (closes: #332962)
+ * [hppa] Enable
(original)
+++ dists/sid/linux-2.6/debian/changelogTue Apr 10 20:08:13 2007
@@ -7,7 +7,7 @@
[ dann frazier ]
* [hppa] Add parisc arch patch from Kyle McMartin
* [hppa] Enable CONFIG_TULIP_MMIO (closes: #332962)
- * [hppa] Disable ni52 driver, it doesn't build
+ * [hppa
mounting of network filesystems with VX_BINARY_MOUNT caps
(closes: #418076)
+ * Disable broken CONFIG_IP_ROUTE_MULTIPATH_CACHED setting. (closes: #418344)
- -- dann frazier [EMAIL PROTECTED] Fri, 06 Apr 2007 13:16:08 -0600
+ -- dann frazier [EMAIL PROTECTED] Tue, 10 Apr 2007 15:43:37
Author: dannf
Date: Mon Apr 9 16:09:52 2007
New Revision: 8438
Modified:
dists/etch-security/linux-2.6/debian/changelog
Log:
upload with high severity
Modified: dists/etch-security/linux-2.6/debian/changelog
==
---
Author: dannf
Date: Mon Apr 9 18:35:15 2007
New Revision: 8440
Added:
releases/linux-2.6/2.6.18.dfsg.1-12etch1/
- copied from r8439, dists/etch-security/linux-2.6/
Log:
tag 2.6.18.dfsg.1-12etch1
___
Kernel-svn-changes mailing list
==
--- dists/etch/linux-2.6/debian/changelog (original)
+++ dists/etch/linux-2.6/debian/changelog Mon Apr 9 21:08:26 2007
@@ -19,6 +19,27 @@
-- dann frazier [EMAIL PROTECTED] Fri, 06 Apr 2007 13:16:08 -0600
+linux-2.6 (2.6.18.dfsg.1-12etch1) stable
-annotations.dpatch
+See CVE-2007-1357
- -- dann frazier [EMAIL PROTECTED] Wed, 04 Apr 2007 01:47:54 -0600
+ -- dann frazier [EMAIL PROTECTED] Mon, 09 Apr 2007 16:15:25 -0600
kernel-source-2.6.8 (2.6.8-16sarge6) stable-security; urgency=high
Added:
dists/sarge-security/kernel/source/kernel
Author: dannf
Date: Sun Apr 8 19:37:08 2007
New Revision: 8430
Modified:
dists/etch/dependent-pkgs
Log:
updates
Modified: dists/etch/dependent-pkgs
==
--- dists/etch/dependent-pkgs (original)
+++
by inadvertently sharing
+ipv6_fl_socklist between the listening socket and the socket created
+for connection.
+See CVE-2007-1592
- -- dann frazier [EMAIL PROTECTED] Sun, 08 Apr 2007 16:16:03 -0600
+ -- dann frazier [EMAIL PROTECTED] Sun, 08 Apr 2007 16:30:41 -0600
linux-2.6 (2.6.18
-unreadable-PT_INTERP.patch
[SECURITY] Fix a vulnerability that allows local users to read
@@ -17,7 +17,7 @@
for connection.
See CVE-2007-1592
- -- dann frazier [EMAIL PROTECTED] Sun, 08 Apr 2007 16:30:41 -0600
+ -- dann frazier [EMAIL PROTECTED] Sun, 08 Apr 2007 16:52:59 -0600
Author: dannf
Date: Fri Apr 6 20:09:07 2007
New Revision: 8426
Modified:
dists/trunk/linux-2.6/debian/changelog
Log:
add cve reference
Modified: dists/trunk/linux-2.6/debian/changelog
==
---
Author: dannf
Date: Fri Apr 6 20:29:20 2007
New Revision: 8427
Removed:
dists/etch-security/linux-2.6/debian/patches/bugfix/listxattr-mem-corruption.patch
dists/etch/linux-2.6/debian/patches/bugfix/core-dump-unreadable-PT_INTERP.patch
Modified:
. (closes: #417629)
- -- Bastian Blank [EMAIL PROTECTED] Tue, 03 Apr 2007 23:26:42 +0200
+ [ dann frazier ]
+ * bugfix/listxattr-mem-corruption.patch
+[SECURITY] Fix userspace corruption vulnerability caused by
+incorrectly promoted return values in bad_inode_ops
+This patch changes
local users to read
+otherwise unreadable (but executable) files by triggering a core dump.
+See CVE-2007-0958
- -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 16:55:45 -0600
+ -- dann frazier [EMAIL PROTECTED] Wed, 04 Apr 2007 01:47:54 -0600
kernel-source-2.6.8 (2.6.8-16sarge6
[EMAIL PROTECTED] Thu, 29 Mar 2007 00:14:53 +0200
+ -- dann frazier [EMAIL PROTECTED] Tue, 03 Apr 2007 15:10:04 -0600
linux-2.6 (2.6.18.dfsg.1-10) unstable; urgency=low
Modified: dists/trunk/linux-2.6/debian/lib/python/debian_linux/debian.py
source and
+enable/use huge pages.
+See CVE-2005-4811
- -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 13:51:04 -0600
+ -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 14:38:33 -0600
kernel-source-2.6.8 (2.6.8-16sarge6) stable-security; urgency=high
Modified:
dists/sarge
Author: dannf
Date: Sat Mar 31 20:41:43 2007
New Revision: 8407
Modified:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
Log:
typo
Modified:
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
Author: dannf
Date: Sat Mar 31 20:47:00 2007
New Revision: 8409
Modified:
dists/etch/linux-2.6/debian/changelog
Log:
typo
Modified: dists/etch/linux-2.6/debian/changelog
==
--- dists/etch/linux-2.6/debian/changelog
to mount a corrupted ext3 filesystem
+See CVE-2006-6053
- -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 14:38:33 -0600
+ -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 15:43:28 -0600
kernel-source-2.6.8 (2.6.8-16sarge6) stable-security; urgency=high
Added:
dists/sarge-security
vulnerability that can be triggered by a local
+user with the ability to mount a corrupted ext3 filesystem
+See CVE-2006-6053
- -- dann frazier [EMAIL PROTECTED] Tue, 27 Feb 2007 00:10:14 -0700
+ -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 15:49:18 -0600
kernel-source-2.4.27
+[SECURITY] Fix local DoS vulnerability caused by inadvertently sharing
+ipv6_fl_socklist between the listening socket and the socket created
+for connection.
+See CVE-2007-1592
- -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 16:26:49 -0600
+ -- dann frazier [EMAIL PROTECTED
+ * 243_ipv6_fl_socklist-no-share.diff
+[SECURITY] Fix local DoS vulnerability caused by inadvertently sharing
+ipv6_fl_socklist between the listening socket and the socket created
+for connection.
+See CVE-2007-1592
- -- dann frazier [EMAIL PROTECTED] Sat, 31 Mar 2007 15:49:18 -0600
userspace corruption vulnerability caused by
+incorrectly promoted return values in bad_inode_ops
+This patch changes the kernel ABI.
+See CVE-2006-5753
+
+ -- dann frazier [EMAIL PROTECTED] Mon, 26 Mar 2007 14:46:25 -0600
+
linux-2.6 (2.6.18.dfsg.1-12) unstable; urgency=low
[ Steve
Author: dannf
Date: Mon Mar 26 22:23:53 2007
New Revision: 8400
Removed:
dists/trunk/linux-2.6/debian/patches/bugfix/ia64/sal-flush-fix-upstream.patch
dists/trunk/linux-2.6/debian/patches/bugfix/ia64/sal-flush-fix.patch
Log:
This fix is upstream now
22:30:51 2007
@@ -165,7 +165,13 @@
[ Frederik Schüler ]
* Disable NAPI on forcedeth, it is broken.
- -- Bastian Blank [EMAIL PROTECTED] Fri, 16 Mar 2007 19:24:10 +0100
+ [ dann frazier ]
+ * Hardcode the output of the scripts under arch/ia64/scripts as executed
+in an etch
Author: dannf
Date: Sun Mar 25 17:04:06 2007
New Revision: 8392
Added:
dists/etch/linux-2.6/debian/patches/bugfix/all/vserver/
dists/etch/linux-2.6/debian/patches/bugfix/all/vserver/cross-context-renice-fix.patch
Modified:
dists/etch/linux-2.6/debian/changelog
Author: dannf
Date: Sun Mar 25 18:04:34 2007
New Revision: 8393
Modified:
dists/etch/linux-2.6/debian/changelog
Log:
add bug closure
Modified: dists/etch/linux-2.6/debian/changelog
==
---
] Sat, 24 Mar 2007 08:06:27 +0100
+ -- dann frazier [EMAIL PROTECTED] Sun, 25 Mar 2007 14:35:43 -0600
linux-2.6 (2.6.18.dfsg.1-11) unstable; urgency=low
Added: dists/etch/linux-2.6/debian/patches/bugfix/natsemi-napi-shared-irq.patch
caused by an off-by-one error
+(closes: #410010)
- -- dann frazier [EMAIL PROTECTED] Thu, 22 Mar 2007 13:03:16 -0600
+ -- dann frazier [EMAIL PROTECTED] Fri, 23 Mar 2007 18:19:09 -0600
linux-2.6 (2.6.18.dfsg.1-11) unstable; urgency=low
Added:
dists/etch/linux-2.6/debian/patches/bugfix
,
+Adjusted to apply to Debian's 2.6.18 by dann frazier [EMAIL PROTECTED]
+
+--- source/net/ipv6/ipv6_sockglue.c.orig 2007-03-22 09:58:17.0
-0600
source/net/ipv6/ipv6_sockglue.c2007-03-22 09:59:22.0 -0600
+@@ -408,7 +408,7
201 - 300 of 689 matches
Mail list logo