Accepted fai-kernels 1.17+etch.23etch1 (source powerpc)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 13 Dec 2008 17:42:58 -0700
Source: fai-kernels
Binary: fai-kernels
Architecture: source powerpc
Version: 1.17+etch.23etch1
Distribution: stable-security
Urgency: high
Maintainer: Holger Levsen <holger@debian.org>
Changed-By: dann frazier <dannf@debian.org>
Description:
fai-kernels - special kernels for FAI (Fully Automatic Installation)
Changes:
fai-kernels (1.17+etch.23etch1) stable-security; urgency=high
.
* Rebuild against linux-source-2.6.18_2.6.18.dfsg.1-23etch1:
* Fix missing boundary checks in syscall/syscall32_nopage():
- bugfix/add-install_special_mapping.patch
- bugfix/i386-vdso-use_install_special_mapping.patch
- bugfix/x86_64-ia32-vDSO-use-install_special_mapping.patch
- features/all/xen/vdso-use_install_special_mapping.patch
See CVE-2008-3527
* Modify feature patches to apply on top of the fixes for
CVE-2008-3527:
- features/all/vserver/vs2.0.2.2-rc9.patch
- features/all/xen/fedora-2.6.18-36186.patch
- features/all/xen/vserver-update.patch
* Don't allow splicing to files opened with O_APPEND:
- bugfix/dont-allow-splice-to-files-opened-with-O_APPEND.patch
See CVE-2008-4554
* Avoid printk floods when reading corrupted ext[2,3] directories
- bugfix/ext2-avoid-corrupted-directory-printk-floods.patch
- bugfix/ext3-avoid-corrupted-directory-printk-floods.patch
See CVE-2008-3528
* Fix oops in SCTP
- bugfix/sctp-fix-oops-when-INIT-ACK-indicates-that-peer-doesnt-support-AUTH.patch
See CVE-2008-4576
* Fix buffer overflow in hfsplus
- bugfix/hfsplus-fix-Buffer-overflow-with-a-corrupted-image.patch
See CVE-2008-4933
* Fix BUG() in hfsplus
- bugfix/hfsplus-check_read_mapping_page-return-value.patch
See CVE-2008-4934
* Fix stack corruption in hfs
- bugfix/hfs-fix-namelength-memory-corruption.patch
See CVE-2008-5025
* Fix recursive descent in __scm_destroy
- bugfix/af_unix-fix-garbage-collector-races.patch
- bugfix/af_unix-convert-socks-to-unix_socks.patch
- bugfix/net-unix-fix-inflight-counting-bug-in-garbage-collector.patch
- bugfix/net-fix-recursive-descent-in-__scm_destroy.patch
See CVE-2008-5029
* Make sendmsg() block during UNIX garbage collection:
- bugfix/net-unix-gc-fix-soft-lockups-oom-issues.patch
See CVE-2008-5300
* Fix DoS when calling svc_listen twice on the same socket while reading
/proc/net/atm/*vc:
- bugfix/atm-duplicate-listen-on-socket-corrupts-the-vcc-table.patch
See CVE-2008-5079
* Fix race conditions between inotify removal and umount
- bugfix/inotify-watch-removal-umount-races.patch
See CVE-2008-5182
Files:
f36c4fb705e5b9c7d698421d0aacf047 740 admin extra fai-kernels_1.17+etch.23etch1.dsc
c453400f733526582aa19eec52109711 57771 admin extra fai-kernels_1.17+etch.23etch1.tar.gz
67c60e48f8171e261b681c88a5eb49c1 3370368 admin extra fai-kernels_1.17+etch.23etch1_powerpc.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iD8DBQFJRWXrhuANDBmkLRkRAvKzAJ0UDstb3io4quikmGDZs3Qep7z4TACfZ7mT
OALMxeoUDbVQ9FYxMxkVIhU=
=haJm
-----END PGP SIGNATURE-----
Accepted:
fai-kernels_1.17+etch.23etch1.dsc
to pool/main/f/fai-kernels/fai-kernels_1.17+etch.23etch1.dsc
fai-kernels_1.17+etch.23etch1.tar.gz
to pool/main/f/fai-kernels/fai-kernels_1.17+etch.23etch1.tar.gz
fai-kernels_1.17+etch.23etch1_powerpc.deb
to pool/main/f/fai-kernels/fai-kernels_1.17+etch.23etch1_powerpc.deb
Reply to: