Accepted kernel-patch-powerpc-2.6.8 2.6.8-12sarge5 (source powerpc)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 4 Sep 2006 10:01:37 -0600
Source: kernel-patch-powerpc-2.6.8
Binary: kernel-image-2.6.8-3-powerpc kernel-build-2.6.8-3-powerpc kernel-image-2.6.8-3-power4-smp kernel-build-2.6.8-3-power3-smp kernel-image-2.6.8-3-power4 kernel-image-2.6.8-3-powerpc-smp kernel-image-2.6.8-3-power3 kernel-image-2.6.8-3-power3-smp kernel-build-2.6.8-3-power4 kernel-build-2.6.8-3-power4-smp kernel-headers-2.6.8-3 kernel-build-2.6.8-3-powerpc-smp kernel-build-2.6.8-3-power3
Architecture: source powerpc
Version: 2.6.8-12sarge5
Distribution: stable-security
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: dann frazier <dannf@debian.org>
Description:
kernel-build-2.6.8-3-power3 - build infrastructure for kernel version 2.6.8-3-power3
kernel-build-2.6.8-3-power3-smp - build infrastructure for kernel version 2.6.8-3-power3-smp
kernel-build-2.6.8-3-power4 - build infrastructure for kernel version 2.6.8-3-power4
kernel-build-2.6.8-3-power4-smp - build infrastructure for kernel version 2.6.8-3-power4-smp
kernel-build-2.6.8-3-powerpc - build infrastructure for kernel version 2.6.8-3-powerpc
kernel-build-2.6.8-3-powerpc-smp - build infrastructure for kernel version 2.6.8-3-powerpc-smp
kernel-headers-2.6.8-3 - header files for the Linux kernel version 2.6.8-3
kernel-image-2.6.8-3-power3 - Linux kernel image for 2.6.8-3-power3
kernel-image-2.6.8-3-power3-smp - Linux kernel image for 2.6.8-3-power3-smp
kernel-image-2.6.8-3-power4 - Linux kernel image for 2.6.8-3-power4
kernel-image-2.6.8-3-power4-smp - Linux kernel image for 2.6.8-3-power4-smp
kernel-image-2.6.8-3-powerpc - Linux kernel image for 2.6.8-3-powerpc
kernel-image-2.6.8-3-powerpc-smp - Linux kernel image for 2.6.8-3-powerpc-smp
Changes:
kernel-patch-powerpc-2.6.8 (2.6.8-12sarge5) stable-security; urgency=high
.
* Build against kernel-tree-2.6.8-16sarge5:
* [ERRATA] madvise_remove-restrict.dpatch
[SECURITY] The 2.6.8-16sarge3 changelog associated this patch with
CVE-2006-1524. However, this patch fixes an mprotect issue that was
split off from the original report into CVE-2006-2071. 2.6.8 is not
vulnerable to CVE-2006-1524 the madvise_remove issue.
See CVE-2006-2071
* fs-ext3-bad-nfs-handle.dpatch
[SECURITY] James McKenzie discovered a Denial of Service vulnerability
in the NFS driver. When exporting an ext3 file system over NFS, a remote
attacker could exploit this to trigger a file system panic by sending
a specially crafted UDP packet.
See CVE-2006-3468
* direct-io-write-mem-leak.dpatch
[SECURITY] Fix memory leak in O_DIRECT write.
See CVE-2004-2660
* nfs-handle-long-symlinks.dpatch
[SECURITY] Fix buffer overflow in NFS readline handling that allows a
remote server to cause a denial of service (crash) via a long symlink
See CVE-2005-4798
* cdrom-bad-cgc.buflen-assign.dpatch
[SECURITY] Fix buffer overflow in dvd_read_bca which could potentially
be used by a local user to trigger a buffer overflow via a specially
crafted DVD, USB stick, or similar automatically mounted device.
See CVE-2006-2935
* usb-serial-ftdi_sio-dos.patch
[SECURITY] fix userspace DoS in ftdi_sio driver
See CVE-2006-2936
* selinux-tracer-SID-fix.dpatch
[SECURITY] Fix vulnerability in selinux_ptrace that prevents local
users from changing the tracer SID to the SID of another process
See CVE-2006-1052
* netfilter-SO_ORIGINAL_DST-leak.dpatch
[SECURITY] Fix information leak in SO_ORIGINAL_DST
See CVE-2006-1343
* sg-no-mmap-VM_IO.dpatch
[SECURITY] Fix DoS vulnerability whereby a local user could attempt
a dio/mmap and cause the sg driver to oops.
See CVE-2006-1528
* exit-bogus-bugon.dpatch
[SECURITY] Remove bogus BUG() in exit.c which could be maliciously
triggered by a local user
See CVE-2006-1855
* readv-writev-missing-lsm-check.dpatch,
readv-writev-missing-lsm-check-compat.dpatch
[SECURITY] Add missing file_permission callback in readv/writev syscalls
See CVE-2006-1856
* snmp-nat-mem-corruption-fix.dpatch
[SECURITY] Fix memory corruption in snmp_trap_decode
See CVE-2006-2444
* kfree_skb-race.dpatch
[SECURITY] Fix race between kfree_skb and __skb_unlink
See CVE-2006-2446
* hppa-mb-extraneous-semicolon.dpatch,
sparc32-mb-extraneous-semicolons.dpatch,
sparc64-mb-extraneous-semicolons.dpatch:
Fix a syntax error caused by extranous semicolons in smp_mb() macros
which resulted in a build failure with kfree_skb-race.dpatch
* sctp-priv-elevation.dpatch
[SECURITY] Fix SCTP privelege escalation
See CVE-2006-3745
* sctp-priv-elevation-2.dpatch
[SECURITY] Fix local DoS resulting from sctp-priv-elevation.dpatch
See CVE-2006-4535
* ppc-hid0-dos.dpatch
[SECURITY][ppc] Fix local DoS by clearing HID0 attention enable on
PPC970 at boot time
See CVE-2006-4093
* udf-deadlock.dpatch
[SECURITY] Fix possible UDF deadlock and memory corruption
See CVE-2006-4145
Files:
fa7d3a7c2190d2d9c2d2e0010f37d055 1072 devel optional kernel-patch-powerpc-2.6.8_2.6.8-12sarge5.dsc
1e9e1b1fa66ed32cddfddc13f567cce9 27874 devel optional kernel-patch-powerpc-2.6.8_2.6.8-12sarge5.tar.gz
f522d52c8098621be06b4bb9d3c31f8f 13570412 base optional kernel-image-2.6.8-3-power4_2.6.8-12sarge5_powerpc.deb
99ef4e1c8ac0e2204d5f267b9caa324b 408416 devel optional kernel-build-2.6.8-3-power3-smp_2.6.8-12sarge5_powerpc.deb
4470cf088d76a24982a4fa705b0956f4 407996 devel optional kernel-build-2.6.8-3-powerpc_2.6.8-12sarge5_powerpc.deb
85a0f87adab8eb919165211fb214d996 407746 devel optional kernel-build-2.6.8-3-power4_2.6.8-12sarge5_powerpc.deb
e5cb49fc122ef93c3b568630c53ba13d 407812 devel optional kernel-build-2.6.8-3-powerpc-smp_2.6.8-12sarge5_powerpc.deb
accb6b5d125e19467b801525e2479e7f 13586572 base optional kernel-image-2.6.8-3-power3_2.6.8-12sarge5_powerpc.deb
8288b7056a059275070ddb6eabcea52b 13602626 base optional kernel-image-2.6.8-3-powerpc_2.6.8-12sarge5_powerpc.deb
cf66501fd8f1e1e4e98c44fbe60ce62b 5149114 devel optional kernel-headers-2.6.8-3_2.6.8-12sarge5_powerpc.deb
3e43c58ba6b0c1738e8e07121f5186c3 408454 devel optional kernel-build-2.6.8-3-power3_2.6.8-12sarge5_powerpc.deb
192bd75b60329cf4ea3f51c244216728 13859172 base optional kernel-image-2.6.8-3-powerpc-smp_2.6.8-12sarge5_powerpc.deb
ef41199d6ad8d30614c8cf12db99ff93 13938498 base optional kernel-image-2.6.8-3-power3-smp_2.6.8-12sarge5_powerpc.deb
ffc2d49a03a912816a21036f7221d6dc 13927512 base optional kernel-image-2.6.8-3-power4-smp_2.6.8-12sarge5_powerpc.deb
cbf0d53d33c920c369c7716efc61fcb1 407666 devel optional kernel-build-2.6.8-3-power4-smp_2.6.8-12sarge5_powerpc.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iD8DBQFFEAOchuANDBmkLRkRAlnWAKCL1qgExo5ROAlcZ55WyJiCTG2hJACeMcpM
90VytTis0d47bUXMgL6kaOA=
=mfbL
-----END PGP SIGNATURE-----
Accepted:
kernel-build-2.6.8-3-power3-smp_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power3-smp_2.6.8-12sarge5_powerpc.deb
kernel-build-2.6.8-3-power3_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power3_2.6.8-12sarge5_powerpc.deb
kernel-build-2.6.8-3-power4-smp_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power4-smp_2.6.8-12sarge5_powerpc.deb
kernel-build-2.6.8-3-power4_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power4_2.6.8-12sarge5_powerpc.deb
kernel-build-2.6.8-3-powerpc-smp_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-powerpc-smp_2.6.8-12sarge5_powerpc.deb
kernel-build-2.6.8-3-powerpc_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-powerpc_2.6.8-12sarge5_powerpc.deb
kernel-headers-2.6.8-3_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-headers-2.6.8-3_2.6.8-12sarge5_powerpc.deb
kernel-image-2.6.8-3-power3-smp_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power3-smp_2.6.8-12sarge5_powerpc.deb
kernel-image-2.6.8-3-power3_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power3_2.6.8-12sarge5_powerpc.deb
kernel-image-2.6.8-3-power4-smp_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power4-smp_2.6.8-12sarge5_powerpc.deb
kernel-image-2.6.8-3-power4_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power4_2.6.8-12sarge5_powerpc.deb
kernel-image-2.6.8-3-powerpc-smp_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-powerpc-smp_2.6.8-12sarge5_powerpc.deb
kernel-image-2.6.8-3-powerpc_2.6.8-12sarge5_powerpc.deb
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-powerpc_2.6.8-12sarge5_powerpc.deb
kernel-patch-powerpc-2.6.8_2.6.8-12sarge5.dsc
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-patch-powerpc-2.6.8_2.6.8-12sarge5.dsc
kernel-patch-powerpc-2.6.8_2.6.8-12sarge5.tar.gz
to pool/main/k/kernel-patch-powerpc-2.6.8/kernel-patch-powerpc-2.6.8_2.6.8-12sarge5.tar.gz
Reply to: