[kernel] r7175 - in dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian: patches patches/series

Wed, 16 Aug 2006 20:09:49 -0700 

Author: dannf
Date: Thu Aug 17 03:09:25 2006
New Revision: 7175

Added:
   
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/cdrom-bad-cgc.buflen-assign.dpatch
      - copied unchanged from r7172, 
/dists/sarge-security/kernel-2.4/source/kernel-source-2.4.27-2.4.27/debian/patches/224_cdrom-bad-cgc.buflen-assign.diff
Modified:
   dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
   
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5

Log:
* cdrom-bad-cgc.buflen-assign.dpatch
  [SECURITY] Fix buffer overflow in dvd_read_bca which could potentially
  be used by a local user to trigger a buffer overflow via a specially
  crafted DVD, USB stick, or similar automatically mounted device.
  See CVE-2006-2935

Modified: 
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog
==============================================================================
--- 
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog   
    (original)
+++ 
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/changelog   
    Thu Aug 17 03:09:25 2006
@@ -13,8 +13,13 @@
     [SECURITY] Fix buffer overflow in NFS readline handling that allows a
     remote server to cause a denial of service (crash) via a long symlink
     See CVE-2005-4798
+  * cdrom-bad-cgc.buflen-assign.dpatch
+    [SECURITY] Fix buffer overflow in dvd_read_bca which could potentially
+    be used by a local user to trigger a buffer overflow via a specially
+    crafted DVD, USB stick, or similar automatically mounted device.
+    See CVE-2006-2935
 
- -- dann frazier <[EMAIL PROTECTED]>  Wed, 16 Aug 2006 20:24:10 -0600
+ -- dann frazier <[EMAIL PROTECTED]>  Wed, 16 Aug 2006 21:07:31 -0600
 
 kernel-source-2.6.8 (2.6.8-16sarge4) stable-security; urgency=high
 

Modified: 
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5
==============================================================================
--- 
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5
   (original)
+++ 
dists/sarge-security/kernel/source/kernel-source-2.6.8-2.6.8/debian/patches/series/2.6.8-16sarge5
   Thu Aug 17 03:09:25 2006
@@ -1,3 +1,4 @@
 + fs-ext3-bad-nfs-handle.dpatch
 + direct-io-write-mem-leak.dpatch
 + nfs-handle-long-symlinks.dpatch
++ cdrom-bad-cgc.buflen-assign.dpatch

_______________________________________________
Kernel-svn-changes mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/kernel-svn-changes

Reply via email to