Accepted user-mode-linux 2.6.18-1um-2etch4 (source i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 31 Aug 2007 15:22:56 -0600
Source: user-mode-linux
Binary: user-mode-linux
Architecture: source i386
Version: 2.6.18-1um-2etch4
Distribution: stable-security
Urgency: high
Maintainer: User Mode Linux Maintainers <pkg-uml-pkgs@lists.alioth.debian.org>
Changed-By: dann frazier <dannf@debian.org>
Description:
user-mode-linux - User-mode Linux (kernel)
Changes:
user-mode-linux (2.6.18-1um-2etch4) stable-security; urgency=high
.
* NMU by the Security Team
* Rebuild against linux-source-2.6.18 (2.6.18.dfsg.1-13etch2):
* bugfix/ipv4-fib_props-out-of-bounds.patch
[SECURITY] Fix a typo which caused fib_props[] to be of the wrong size
and check for out of bounds condition in index provided by userspace
See CVE-2007-2172
* bugfix/cpuset_tasks-underflow.patch
[SECURITY] Fix integer underflow in /dev/cpuset/tasks which could allow
local attackers to read sensitive kernel memory if the cpuset filesystem
is mounted.
See CVE-2007-2875
* bugfix/random-bound-check-ordering.patch
[SECURITY] Fix stack-based buffer overflow in the random number
generator
See CVE-2007-3105
* bugfix/cifs-fix-sign-settings.patch
[SECURITY] Fix overriding the server to force signing on caused by
checking the wrong gloal variable.
See CVE-2007-3843
* bugfix/aacraid-ioctl-perm-check.patch
[SECURITY] Require admin capabilities to issue ioctls to aacraid devices
See CVE-2007-4308
Files:
d8b11da8ad4e4b4332c149b315134316 865 misc extra user-mode-linux_2.6.18-1um-2etch4.dsc
448eaa6589f4939670c4b23f077c7989 13902 misc extra user-mode-linux_2.6.18-1um-2etch4.diff.gz
5cd79093834616eda03bc69f6da100ad 25581340 misc extra user-mode-linux_2.6.18-1um-2etch4_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFG2JHahuANDBmkLRkRAieiAJ424+P5Jd+6QF+dTktX4x/qHSLquwCgil0B
glRAGSomRBKHcUupTYtzRBk=
=qIRq
-----END PGP SIGNATURE-----
Accepted:
user-mode-linux_2.6.18-1um-2etch4.diff.gz
to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch4.diff.gz
user-mode-linux_2.6.18-1um-2etch4.dsc
to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch4.dsc
user-mode-linux_2.6.18-1um-2etch4_i386.deb
to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch4_i386.deb
Reply to: