lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <20060823223355.GC19810@stusta.de>
Date:	Thu, 24 Aug 2006 00:33:55 +0200
From:	Adrian Bunk <bunk@...sta.de>
To:	linux-kernel@...r.kernel.org
Subject: Linux 2.6.16.28-rc3

There are still several patches pending - they will go into 2.6.16.29.

Security fixes since 2.6.16.27:
- CVE-2006-2935: cdrom: fix bad cgc.buflen assignment
- CVE-2006-3745: Fix sctp privilege elevation
- CVE-2006-4093: powerpc: Clear HID0 attention enable on PPC970 at boot time
- CVE-2006-4145: Fix possible UDF deadlock and memory corruption


Patch location:
ftp://ftp.kernel.org/pub/linux/kernel/people/bunk/linux-2.6.16.y/testing/

git tree:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-2.6.16.y.git

RSS feed of the git tree:
http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git;a=rss


Changes since 2.6.16.28-rc3:

Adrian Bunk:
      Linux 2.6.16.28-rc3

Danny Tholen:
      1394: fix for recently added firewire patch that breaks things on ppc

Jan Kara:
      Fix possible UDF deadlock and memory corruption (CVE-2006-4145)

Sridhar Samudrala:
      Fix sctp privilege elevation (CVE-2006-3745)


 Makefile                    |    2 -
 drivers/ieee1394/ohci1394.c |    4 +-
 fs/udf/super.c              |    2 -
 fs/udf/truncate.c           |   64 +++++++++++++++++++++---------------
 include/net/sctp/sctp.h     |   13 -------
 include/net/sctp/sm.h       |    3 -
 net/sctp/sm_make_chunk.c    |   30 +++++-----------
 net/sctp/sm_statefuns.c     |   20 ++---------
 net/sctp/socket.c           |   10 +++++
 9 files changed, 66 insertions(+), 82 deletions(-)

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ