lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:	Tue, 22 Jan 2008 20:48:23 +0200
From:	Adrian Bunk <adrian.bunk@...ial.fi>
To:	linux-kernel@...r.kernel.org
Subject: Linux 2.6.16.60-rc1

Security fixes since 2.6.16.59:
- CVE-2007-6063: isdn: avoid copying overly-long strings
- CVE-2007-6151: I4L: fix isdn_ioctl memory overrun vulnerability
- CVE-2007-6206: vfs: coredumping fix


Location:
ftp://ftp.kernel.org/pub/linux/kernel/people/bunk/linux-2.6.16.y/testing/

git tree:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-2.6.16.y.git

RSS feed of the git tree:
http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git;a=rss


Changes since 2.6.16.59:

Adrian Bunk (2):
      drivers/scsi/BusLogic.c: #ifdef MODULE BusLogic_pci_tbl[]
      Linux 2.6.16.60-rc1

Al Viro (3):
      [CASSINI]: Fix endianness bug.
      [NET]: Introduce types for checksums.
      [NET]: Generic checksum annotations and cleanups.

Ben Collins (1):
      [BusLogic] Add pci dev table for auto module loading.

Chas Williams (1):
      [ATM]: [nicstar] delay irq setup until card is configured

David S. Miller (1):
      [CASSINI]: Set skb->truesize properly on receive packets.

Eric Dumazet (1):
      [IPV4] ROUTE: ip_rt_dump() is unecessary slow

Herbert Xu (1):
      [ATM]: Check IP header validity in mpc_send_packet

Ingo Molnar (1):
      vfs: coredumping fix (CVE-2007-6206)

Jeff Moyer (1):
      raw: don't allow the creation of a raw device with minor number 0

Karsten Keil (2):
      isdn: avoid copying overly-long strings (CVE-2007-6063)
      I4L: fix isdn_ioctl memory overrun vulnerability (CVE-2007-6151)

Trond Myklebust (2):
      NFS: writes should not clobber utimes() calls
      NFS: call nfs_wb_all() only on regular files


 Makefile                       |    2 
 drivers/atm/nicstar.c          |   19 +++-----
 drivers/char/raw.c             |    2 
 drivers/isdn/i4l/isdn_common.c |    5 +-
 drivers/isdn/i4l/isdn_net.c    |    8 +--
 drivers/net/cassini.c          |    9 ++-
 drivers/net/cassini.h          |   18 +++----
 drivers/scsi/BusLogic.c        |   13 +++++
 fs/exec.c                      |    6 ++
 fs/nfs/dir.c                   |    3 -
 fs/nfs/inode.c                 |    4 -
 include/linux/types.h          |    2 
 include/net/checksum.h         |   42 ++++++++++--------
 include/net/ip6_checksum.h     |   76 ++++++++++++++++-----------------
 net/atm/mpc.c                  |    7 +++
 net/ipv4/route.c               |    8 +--
 16 files changed, 133 insertions(+), 91 deletions(-)

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ