lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:	Sat, 19 Jan 2008 15:19:42 +0200
From:	Adrian Bunk <adrian.bunk@...ial.fi>
To:	linux-kernel@...r.kernel.org
Subject: Linux 2.6.16.59

Security fixes since 2.6.16.58:
- CVE-2006-6058: limit minixfs printks on corrupted dir i_size
- CVE-2007-5500: wait_task_stopped: Check p->exit_state instead of TASK_TRACED
- CVE-2008-0001: Use access mode instead of open flags to determine needed permissions


Location:
ftp://ftp.kernel.org/pub/linux/kernel/v2.6/

git tree:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-2.6.16.y.git

RSS feed of the git tree:
http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git;a=rss


Changes since 2.6.16.58:

Adrian Bunk (3):
      struct input_device_id mustn't be userspace visible
      Linux 2.6.16.59-rc1
      Linux 2.6.16.59

Al Viro (1):
      missing dma_sync_single_range_for_{cpu,device} on alpha

David S. Miller (1):
      [SPARC64]: Fix endless loop in cheetah_xcall_deliver().

Denis Vlasenko (1):
      fix messages in fs/minix

Eric Sandeen (1):
      limit minixfs printks on corrupted dir i_size (CVE-2006-6058)

Evgeniy Polyakov (1):
      [IPV6]: Restore IPv6 when MTU is big enough

Herbert Xu (2):
      [IPV4] raw: Strengthen check on validity of iph->ihl
      [IPSEC]: Avoid undefined shift operation when testing algorithm ID

Ivan Kokshaysky (1):
      include/asm-alpha/io_trivial.h build fixes

Li Zefan (1):
      CONNECTOR: don't touch queue dev after decrement of ref count

Linus Torvalds (1):
      Use access mode instead of open flags to determine needed permissions (CVE-2008-0001)

Mark McLoughlin (1):
      [INET]: Fix netdev renaming and inet address labels

Maximilian Attems (1):
      [IRDA]: irda_create() nuke user triggable printk

Roland McGrath (1):
      wait_task_stopped: Check p->exit_state instead of TASK_TRACED (CVE-2007-5500)

Russ Dill (1):
      [NET] kaweth was forgotten in msec switchover of usb_start_wait_urb


 Makefile                        |    2 +-
 arch/sparc64/kernel/smp.c       |   19 +++++++++++++------
 drivers/connector/cn_queue.c    |    2 +-
 drivers/usb/net/kaweth.c        |    2 +-
 fs/minix/bitmap.c               |   10 +++++-----
 fs/minix/inode.c                |   26 +++++++++++++-------------
 fs/minix/itree_v1.c             |    9 +++++++--
 fs/minix/itree_v2.c             |    9 +++++++--
 fs/namei.c                      |    4 ++--
 include/asm-alpha/dma-mapping.h |   14 ++++++++------
 include/asm-alpha/io_trivial.h  |   12 ++++++++----
 include/linux/input.h           |    3 +++
 kernel/exit.c                   |    3 +--
 net/ipv4/devinet.c              |    2 +-
 net/ipv4/raw.c                  |    4 +++-
 net/ipv6/addrconf.c             |   11 ++++++++++-
 net/irda/af_irda.c              |    2 --
 net/key/af_key.c                |   14 ++++++++++++--
 18 files changed, 96 insertions(+), 52 deletions(-)
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists