FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Ubuntu > Ubuntu Kernel Team

 
 
LinkBack Thread Tools
 
Old 06-08-2011, 01:25 PM
Paolo Pisati
 
Default More CVE fixes

CVE closed:

CVE-2010-4242, CVE-2010-4157, CVE-2010-4080, CVE-2010-4175,
CVE-2010-3296, CVE-2010-3297, CVE-2010-4073, CVE-2010-4081,
CVE-2010-4082, CVE-2010-4083, CVE-2010-3859, CVE-2010-4162,
CVE-2010-4163, CVE-2010-3880, CVE-2010-4169, CVE-2010-3858, CVE-2010-4163


All commits cherry-picked from maverick/master, upstream sha, buglink
and kteam ack included.


--
bye,
p.
The following changes since commit 8737005ac5db109aca93fa176fe4f57e46c89937:

agp: fix OOM and buffer overflow (2011-06-02 14:27:16 +0100)

are available in the git repository at:
git://kernel.ubuntu.com/ppisati/ubuntu-maverick.git ti-omap4

Alan Cox (1):
bluetooth: Fix missing NULL check - CVE-2010-4242

Dan Carpenter (1):
gdth: integer overflow in ioctl - CVE-2010-4157

Dan Rosenberg (7):
drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack memory - CVE-2010-3296
drivers/net/eql.c: prevent reading uninitialized stack memory - CVE-2010-3297
ipc: initialize structure memory to zero for compat functions - CVE-2010-4073
ALSA: sound/pci/rme9652: prevent reading uninitialized stack memory - CVE-2010-4080, CVE-2010-4081
drivers/video/via/ioctl.c: prevent reading uninitialized stack memory - CVE-2010-4082
sys_semctl: fix kernel stack leakage, CVE-2010-4083
rds: Integer overflow in RDS cmsg handling, CVE-2010-4175

David S. Miller (1):
net: Limit socket I/O iovec total length to INT_MAX - CVE-2010-3859

Jens Axboe (2):
bio: take care not overflow page count when mapping/copying user data - CVE-2010-4162
block: check for proper length of iov entries in blk_rq_map_user_iov() - CVE-2010-4163

Linus Torvalds (1):
net: Truncate recvfrom and sendto length to INT_MAX - CVE-2010-3859

Nelson Elhage (1):
inet_diag: Make sure we actually run the same bytecode we audited, CVE-2010-3880

Pekka Enberg (1):
perf_events: Fix perf_counter_mmap() hook in mprotect() - CVE-2010-4169

Roland McGrath (1):
setup_arg_pages: diagnose excessive argument size - CVE-2010-3858

Xiaotian Feng (1):
block: check for proper length of iov entries earlier in blk_rq_map_user_iov(), CVE-2010-4163

block/blk-map.c | 3 +++
drivers/bluetooth/hci_ldisc.c | 7 +++++++
drivers/net/cxgb3/cxgb3_main.c | 2 ++
drivers/net/eql.c | 2 ++
drivers/scsi/gdth.c | 8 ++++++++
drivers/video/via/ioctl.c | 2 ++
fs/bio.c | 14 +++++++++++++-
fs/exec.c | 5 +++++
ipc/compat.c | 6 ++++++
ipc/compat_mq.c | 5 +++++
ipc/sem.c | 2 ++
mm/mprotect.c | 2 +-
net/compat.c | 10 ++++++----
net/core/iovec.c | 15 +++++++--------
net/ipv4/inet_diag.c | 27 ++++++++++++++++-----------
net/rds/rdma.c | 24 +++++++++++++++++++-----
net/socket.c | 4 ++++
sound/pci/rme9652/hdsp.c | 1 +
sound/pci/rme9652/hdspm.c | 1 +
19 files changed, 110 insertions(+), 30 deletions(-)
--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 
Old 06-08-2011, 02:10 PM
Tim Gardner
 
Default More CVE fixes

On 06/08/2011 07:25 AM, Paolo Pisati wrote:

git://kernel.ubuntu.com/ppisati/ubuntu-maverick.git ti-omap4


applied and pushed. you need to make sure all of these have ti-omap4
maverick bug tasks, e.g., http://bugs.launchpad.net/bugs/721455 does not.


Are you about ready to have this packaged and uploaded?

rtg
--
Tim Gardner tim.gardner@canonical.com

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 
Old 06-08-2011, 02:10 PM
Tim Gardner
 
Default More CVE fixes

On 06/08/2011 07:25 AM, Paolo Pisati wrote:

git://kernel.ubuntu.com/ppisati/ubuntu-maverick.git ti-omap4


applied and pushed. you need to make sure all of these have ti-omap4
maverick bug tasks, e.g., http://bugs.launchpad.net/bugs/721455 does not.


Are you about ready to have this packaged and uploaded?

rtg
--
Tim Gardner tim.gardner@canonical.com

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 
Old 06-09-2011, 01:07 PM
Paolo Pisati
 
Default More CVE fixes

On 06/08/2011 04:10 PM, Tim Gardner wrote:

On 06/08/2011 07:25 AM, Paolo Pisati wrote:

git://kernel.ubuntu.com/ppisati/ubuntu-maverick.git ti-omap4


applied and pushed. you need to make sure all of these have ti-omap4
maverick bug tasks, e.g., http://bugs.launchpad.net/bugs/721455 does not.


i'm reviewing them ATM.


Are you about ready to have this packaged and uploaded?


yep, go ahead.

--
bye,
p.

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 
Old 06-24-2011, 04:33 PM
Paolo Pisati
 
Default More cve fixes

The following changes since commit f627b1c52807ec0c614a7335286b11f408c9d12c:

IB/uverbs: Handle large number of entries in poll CQ CVE-2010-4649
(2011-06-22 08:32:44 -0600)

are available in the git repository at:
git://kernel.ubuntu.com/ppisati/ubuntu-lucid.git fsl-imx51

Davide Libenzi (1):
epoll: prevent creating circular epoll structures CVE-2011-1082

Neil Horman (1):
nfs4: Ensure that ACL pages sent over NFS were not allocated from
the slab (v3) CVE-2011-1090

Timo Warns (1):
ldm: corrupted partition table can cause kernel oops CVE-2011-1012

Vasiliy Kulikov (5):
netfilter: ipt_CLUSTERIP: fix buffer overflow CVE-2011-2534
netfilter: arp_tables: fix infoleak to userspace CVE-2011-1170
netfilter: ip_tables: fix infoleak to userspace CVE-2011-1171
ipv6: netfilter: ip6_tables: fix infoleak to userspace CVE-2011-1172
econet: 4 byte infoleak to the network CVE-2011-1173

fs/eventpoll.c | 95
++++++++++++++++++++++++++++++++++++
fs/nfs/nfs4proc.c | 43 +++++++++++++++-
fs/partitions/ldm.c | 5 ++
net/econet/af_econet.c | 2 +-
net/ipv4/netfilter/arp_tables.c | 3 +
net/ipv4/netfilter/ip_tables.c | 3 +
net/ipv4/netfilter/ipt_CLUSTERIP.c | 5 ++-
net/ipv6/netfilter/ip6_tables.c | 3 +
8 files changed, 155 insertions(+), 4 deletions(-)

All commits cherry-picked from lucid/master, upstream sha, buglink
pointing to the real lp bug and kteam signoff included.
--
bye,
p.

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 
Old 06-24-2011, 04:36 PM
Paolo Pisati
 
Default More cve fixes

The following changes since commit fc1fce701213d8be9bbec3632638d22c925a4ad3:

IB/uverbs: Handle large number of entries in poll CQ CVE-2010-4649
(2011-06-22 09:02:55 -0600)

are available in the git repository at:
git://kernel.ubuntu.com/ppisati/ubuntu-maverick.git ti-omap4

Alex Elder (1):
xfs: zero proper structure size for geometry calls CVE-2011-0711

Davide Libenzi (1):
epoll: prevent creating circular epoll structures CVE-2011-1082

Timo Warns (1):
ldm: corrupted partition table can cause kernel oops CVE-2011-1012

Vasiliy Kulikov (5):
netfilter: ipt_CLUSTERIP: fix buffer overflow CVE-2011-2534
netfilter: arp_tables: fix infoleak to userspace CVE-2011-1170
netfilter: ip_tables: fix infoleak to userspace CVE-2011-1171
ipv6: netfilter: ip6_tables: fix infoleak to userspace CVE-2011-1172
econet: 4 byte infoleak to the network CVE-2011-1173

fs/eventpoll.c | 95
++++++++++++++++++++++++++++++++++++
fs/partitions/ldm.c | 5 ++
fs/xfs/linux-2.6/xfs_ioctl.c | 11 +++-
net/econet/af_econet.c | 2 +-
net/ipv4/netfilter/arp_tables.c | 3 +
net/ipv4/netfilter/ip_tables.c | 3 +
net/ipv4/netfilter/ipt_CLUSTERIP.c | 5 ++-
net/ipv6/netfilter/ip6_tables.c | 3 +
8 files changed, 122 insertions(+), 5 deletions(-)

All commits cherry-picked from lucid/master, upstream sha, buglink
pointing to the real lp bug and kteam signoff included.
--
bye,
p.

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 

Thread Tools




All times are GMT. The time now is 05:28 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org