Uploading linux (3.2.63-1)

To: Debian kernel maintainers <debian-kernel@lists.debian.org>
Cc: debian-release@lists.debian.org
Subject: Uploading linux (3.2.63-1)
From: Ben Hutchings <ben@decadent.org.uk>
Date: Wed, 24 Sep 2014 03:54:24 +0100
Message-id: <[🔎] 1411527264.3659.13.camel@decadent.org.uk>

I intend to upload linux version 3.2.63-1 to stable-proposed-updates
later this week.  This will include all the fixes that went into stable
updates 3.2.61-63 inclusive, including fixes for these security issues:

CVE-2014-3181            HID/magicmouse: buffer overflow
CVE-2014-3182            HID/logitech-dj: out-of-bounds read
CVE-2014-3183/3184/3185  USB/serial/whiteheat: multiple buffer overflows
CVE-2014-3186            HID/picolcd: buffer overflow
CVE-2014-3601            kvm: guest-controllable memory leak
CVE-2014-4171            shmem: reader can block hole punch indefinitely
CVE-2014-4608            lzo: integer overflow
CVE-2014-5077            sctp: remote denial of service
CVE-2014-5471/5472       isofs: unbound recursion allowing stack overflow
  
I also cherry-picked fixes for:

CVE-2014-6410            udf: infinite loop when processing indirect ICBs
CVE-2014-6416/6417/6418  libceph: buffer overflow and related bugs

If any of these look serious enough, I could also prepare a security
update.

Ben.

-- 
Ben Hutchings
Everything should be made as simple as possible, but not simpler.
                                                           - Albert Einstein

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Re: Uploading linux (3.2.63-1)
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Bug#762644: wheezy-pu: package php-getid3/1.9.3-1+deb7u2
Next by Date: Bug#760343: transition: protobuf 2.6.0
Previous by thread: Processed: Re: Bug#762644: wheezy-pu: package php-getid3/1.9.3-1+deb7u2
Next by thread: Re: Uploading linux (3.2.63-1)
Index(es):
- Date
- Thread