lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Sat, 19 Jan 2008 15:19:42 +0200 From: Adrian Bunk <adrian.bunk@...ial.fi> To: linux-kernel@...r.kernel.org Subject: Linux 2.6.16.59 Security fixes since 2.6.16.58: - CVE-2006-6058: limit minixfs printks on corrupted dir i_size - CVE-2007-5500: wait_task_stopped: Check p->exit_state instead of TASK_TRACED - CVE-2008-0001: Use access mode instead of open flags to determine needed permissions Location: ftp://ftp.kernel.org/pub/linux/kernel/v2.6/ git tree: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-2.6.16.y.git RSS feed of the git tree: http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git;a=rss Changes since 2.6.16.58: Adrian Bunk (3): struct input_device_id mustn't be userspace visible Linux 2.6.16.59-rc1 Linux 2.6.16.59 Al Viro (1): missing dma_sync_single_range_for_{cpu,device} on alpha David S. Miller (1): [SPARC64]: Fix endless loop in cheetah_xcall_deliver(). Denis Vlasenko (1): fix messages in fs/minix Eric Sandeen (1): limit minixfs printks on corrupted dir i_size (CVE-2006-6058) Evgeniy Polyakov (1): [IPV6]: Restore IPv6 when MTU is big enough Herbert Xu (2): [IPV4] raw: Strengthen check on validity of iph->ihl [IPSEC]: Avoid undefined shift operation when testing algorithm ID Ivan Kokshaysky (1): include/asm-alpha/io_trivial.h build fixes Li Zefan (1): CONNECTOR: don't touch queue dev after decrement of ref count Linus Torvalds (1): Use access mode instead of open flags to determine needed permissions (CVE-2008-0001) Mark McLoughlin (1): [INET]: Fix netdev renaming and inet address labels Maximilian Attems (1): [IRDA]: irda_create() nuke user triggable printk Roland McGrath (1): wait_task_stopped: Check p->exit_state instead of TASK_TRACED (CVE-2007-5500) Russ Dill (1): [NET] kaweth was forgotten in msec switchover of usb_start_wait_urb Makefile | 2 +- arch/sparc64/kernel/smp.c | 19 +++++++++++++------ drivers/connector/cn_queue.c | 2 +- drivers/usb/net/kaweth.c | 2 +- fs/minix/bitmap.c | 10 +++++----- fs/minix/inode.c | 26 +++++++++++++------------- fs/minix/itree_v1.c | 9 +++++++-- fs/minix/itree_v2.c | 9 +++++++-- fs/namei.c | 4 ++-- include/asm-alpha/dma-mapping.h | 14 ++++++++------ include/asm-alpha/io_trivial.h | 12 ++++++++---- include/linux/input.h | 3 +++ kernel/exit.c | 3 +-- net/ipv4/devinet.c | 2 +- net/ipv4/raw.c | 4 +++- net/ipv6/addrconf.c | 11 ++++++++++- net/irda/af_irda.c | 2 -- net/key/af_key.c | 14 ++++++++++++-- 18 files changed, 96 insertions(+), 52 deletions(-) -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists