Re: 2.4.27-8.experimental.1
On Fri, Feb 25, 2005 at 08:15:23PM +0900, Horms wrote:
> Hi,
>
> As per some discusion with joeyh on debian-boot, cced to this list,
> I would like to hold off on releasing kernel-source and
> kernel-image-i386 2.4.27-9 until after I get back from
> the debian mini-conf in Beijing. That is, i'd like to aim to
> release about this time in 2 weeks.
>
> Joey seems pretty comfortable with this. Sven Luther seems pretty
> comfortable with this. And no one has complained, so I guess
> the plan stands thus far.
>
> In the mean time I am going to take what is in SVN right now,
> which includes some _local_ secuirity fixes, and tag and release
> that into experimental as 2.4.27-8.experimental.1.
> This is currently building and I will upload it tomorrow.
>
> Any objections, please send them here.
I have tagged and uploaded these. And they are also available on
http://debian.vergenet.net/testing/
Changes:
kernel-source-2.4.27 (2.4.27-8.experimental.1) experimental; urgency=low
.
* There was a stray file in 2.4.27-8. Don't include it this time.
(Simon Horman) (closes: Bug#291536)
.
* Updated kernel-tree description from Martin F Krafft
(Simon Horman)
.
* Updated apply script so it can handle point versions
(Simon Horman)
.
* 134_skb_reset_ip_summed.diff: resolve checksumming exploit in
fragmented packet forwarding (Joshua Kwan)
.
* 135_fix_ip_options_leak.diff: [CAN-2004-1335] fix leak of IP options
data. (Joshua Kwan)
.
* 136_vc_resizing_overflow.diff: [CAN-2004-1333] make sure VC resizing
fits in 16 bits. (Joshua Kwan)
.
* 137_io_edgeport_overflow.diff: [CAN-2004-1017] fix buffer overflow
(underflow, really) that opens multiple attack vectors. (Joshua Kwan)
.
* 138_amd64_syscall_vuln.diff: [CAN-2004--1144] fix the "int 0x80 hole"
that allowed overflow of the system call table. (Joshua Kwan)
.
* 139_sparc_context_switch.diff: fix FPU context switching dirtiness on
sparc32 SMP. (Joshua Kwan)
.
* 140_VM_IO.diff: [CAN-2004-1057] fix possible DoS from accessing freed
kernel pages by flagging VM_IO where necessary.
.
* 141_acpi_noirq.patch:
[ACPI] Enhanced PCI probe, CONFIG_HPET_TIMER build warning fix
(Simon Horman)
.
* 142_acpi_skip_timer_override.diff:
[ACPI] skip_timer_override backport from 2.6
including early PCI bridge detection. (Simon Horman)
.
* 121_drm-locking-checks-3.diff: LOCK_TEST_WITH_RETURN build cleanup
(Simon Horman)
.
* [CAN-2005-0204]: AMD64, allows local users to
write to privileged IO ports via OUTS instruction
(Simon Horman)
--
Horms
Reply to: