I intend to upload linux version 3.2.63-1 to stable-proposed-updates later this week. This will include all the fixes that went into stable updates 3.2.61-63 inclusive, including fixes for these security issues: CVE-2014-3181 HID/magicmouse: buffer overflow CVE-2014-3182 HID/logitech-dj: out-of-bounds read CVE-2014-3183/3184/3185 USB/serial/whiteheat: multiple buffer overflows CVE-2014-3186 HID/picolcd: buffer overflow CVE-2014-3601 kvm: guest-controllable memory leak CVE-2014-4171 shmem: reader can block hole punch indefinitely CVE-2014-4608 lzo: integer overflow CVE-2014-5077 sctp: remote denial of service CVE-2014-5471/5472 isofs: unbound recursion allowing stack overflow I also cherry-picked fixes for: CVE-2014-6410 udf: infinite loop when processing indirect ICBs CVE-2014-6416/6417/6418 libceph: buffer overflow and related bugs If any of these look serious enough, I could also prepare a security update. Ben. -- Ben Hutchings Everything should be made as simple as possible, but not simpler. - Albert Einstein
Attachment:
signature.asc
Description: This is a digitally signed message part