Hosting Provided By

Accepted user-mode-linux 2.6.18-1um-2etch4 (source i386)

From: dann frazier <dannf(at)debian.org>
Date: Mon Sep 03 2007 - 03:56:22 EDT

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Fri, 31 Aug 2007 15:22:56 -0600
Source: user-mode-linux
Binary: user-mode-linux
Architecture: source i386
Version: 2.6.18-1um-2etch4
Distribution: stable-security
Urgency: high
Maintainer: User Mode Linux Maintainers <pkg-uml-pkgs@lists.alioth.debian.org> Changed-By: dann frazier <dannf@debian.org> Description:
user-mode-linux - User-mode Linux (kernel) Changes:
user-mode-linux (2.6.18-1um-2etch4) stable-security; urgency=high .

NMU by the Security Team
Rebuild against linux-source-2.6.18 (2.6.18.dfsg.1-13etch2):
- bugfix/ipv4-fib_props-out-of-bounds.patch [SECURITY] Fix a typo which caused fib_props[] to be of the wrong size and check for out of bounds condition in index provided by userspace See CVE-2007-2172
- bugfix/cpuset_tasks-underflow.patch [SECURITY] Fix integer underflow in /dev/cpuset/tasks which could allow local attackers to read sensitive kernel memory if the cpuset filesystem is mounted. See CVE-2007-2875
- bugfix/random-bound-check-ordering.patch [SECURITY] Fix stack-based buffer overflow in the random number generator See CVE-2007-3105
- bugfix/cifs-fix-sign-settings.patch [SECURITY] Fix overriding the server to force signing on caused by checking the wrong gloal variable. See CVE-2007-3843
- bugfix/aacraid-ioctl-perm-check.patch [SECURITY] Require admin capabilities to issue ioctls to aacraid devices See CVE-2007-4308 Files: d8b11da8ad4e4b4332c149b315134316 865 misc extra user-mode-linux_2.6.18-1um-2etch4.dsc 448eaa6589f4939670c4b23f077c7989 13902 misc extra user-mode-linux_2.6.18-1um-2etch4.diff.gz 5cd79093834616eda03bc69f6da100ad 25581340 misc extra user-mode-linux_2.6.18-1um-2etch4_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFG2JHahuANDBmkLRkRAieiAJ424+P5Jd+6QF+dTktX4x/qHSLquwCgil0B glRAGSomRBKHcUupTYtzRBk=
=qIRq
-----END PGP SIGNATURE----- Accepted:

user-mode-linux_2.6.18-1um-2etch4.diff.gz
  to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch4.diff.gz
user-mode-linux_2.6.18-1um-2etch4.dsc
  to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch4.dsc
user-mode-linux_2.6.18-1um-2etch4_i386.deb
  to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch4_i386.deb

-- 
To UNSUBSCRIBE, email to debian-changes-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Mon Sep 3 04:01:31 2007

This message: [ Message body ]
Next message: Moritz Muehlenhoff: "Accepted pptpd 1.3.0-2etch2 (source i386)"
Previous message: dann frazier: "Accepted fai-kernels 1.17+etch5 (source i386)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 07 2007 - 07:58:45 EDT