1. 11 Jul, 2007 1 commit
  2. 06 Jul, 2007 1 commit
    • Dann Frazier's avatar
      * bugfix/pppoe-socket-release-mem-leak.patch · 330a77a3
      Dann Frazier authored
        [SECURITY] fix unpriveleged memory leak when a PPPoE socket is released
        after connect but before PPPIOCGCHAN ioctl is called upon it
        See CVE-2007-2525
      
      svn path=/dists/etch-security/linux-2.6/; revision=9075
      330a77a3
  3. 04 Jul, 2007 2 commits
  4. 23 Jun, 2007 1 commit
  5. 21 May, 2007 1 commit
  6. 17 May, 2007 1 commit
  7. 11 May, 2007 2 commits
  8. 04 May, 2007 2 commits
  9. 03 May, 2007 1 commit
  10. 02 May, 2007 3 commits
  11. 01 May, 2007 5 commits
  12. 30 Apr, 2007 2 commits
    • Dann Frazier's avatar
      * bugfix/nf_conntrack-set-nfctinfo.patch · 96b9ab67
      Dann Frazier authored
        [SECURITY] Fix incorrect classification of IPv6 fragments as ESTABLISHED,
        which allows remote attackers to bypass certain rulesets
        See CVE-2007-1497
      
      svn path=/dists/etch-security/linux-2.6/; revision=8530
      96b9ab67
    • Dann Frazier's avatar
      * bugfix/nfnetlink_log-null-deref.patch · b5777b04
      Dann Frazier authored
        [SECURITY] Fix remotely exploitable NULL pointer dereference in
        nfulnl_recv_config()
        See CVE-2007-1496
      
      svn path=/dists/etch-security/linux-2.6/; revision=8529
      b5777b04
  13. 28 Apr, 2007 1 commit
  14. 27 Apr, 2007 1 commit
  15. 25 Apr, 2007 1 commit
  16. 24 Apr, 2007 2 commits
  17. 10 Apr, 2007 1 commit
  18. 09 Apr, 2007 2 commits
  19. 08 Apr, 2007 3 commits
    • Dann Frazier's avatar
      prepare for release · 8683adca
      Dann Frazier authored
      svn path=/dists/etch-security/linux-2.6/; revision=8433
      8683adca
    • Dann Frazier's avatar
      * bugfix/ipv6_fl_socklist-no-share.patch · bd65d186
      Dann Frazier authored
        [SECURITY] Fix local DoS vulnerability caused by inadvertently sharing
        ipv6_fl_socklist between the listening socket and the socket created
        for connection.
        See CVE-2007-1592
      
      svn path=/dists/etch-security/linux-2.6/; revision=8432
      bd65d186
    • Dann Frazier's avatar
      * bugfix/cm4040-buffer-overflow.patch · 7aaa1a06
      Dann Frazier authored
        [SECURITY] Fix a buffer overflow in the Omnikey CardMan 4040 driver
        See CVE-2007-0005
      
      svn path=/dists/etch-security/linux-2.6/; revision=8431
      7aaa1a06
  20. 06 Apr, 2007 4 commits
    • Dann Frazier's avatar
      * bugfix/appletalk-length-mismatch.patch · c69add27
      Dann Frazier authored
        [SECURITY] Fix a remote DoS (crash) in appletalk
        Depends upon bugfix/appletalk-endianness-annotations.patch
        See CVE-2007-1357
      
      svn path=/dists/etch-security/linux-2.6/; revision=8428
      c69add27
    • Dann Frazier's avatar
      Patch shuffle... · 6d689b09
      Dann Frazier authored
      Looks like we'll be doing a stable-security upload before a stable upload.
      Postpone the ABI changing security fix till the stable upload (which includes
      its own ABI breaker), and include the non-ABI changing fix in stable-security
      upload.
      
      svn path=/dists/etch/linux-2.6/; revision=8427
      6d689b09
    • Dann Frazier's avatar
      Patch shuffle... · e1c93de6
      Dann Frazier authored
      Looks like we'll be doing a stable-security upload before a stable upload.
      Postpone the ABI changing security fix till the stable upload (which includes
      its own ABI breaker), and include the non-ABI changing fix in stable-security
      upload.
      
      svn path=/dists/etch-security/linux-2.6/; revision=8427
      e1c93de6
    • Dann Frazier's avatar
      * bugfix/all/vserver/net-mount-fix.patch · 0ccae21b
      Dann Frazier authored
        Fix mounting of network filesystems with VX_BINARY_MOUNT caps
        (closes: #418076)
      
      svn path=/dists/etch/linux-2.6/; revision=8424
      0ccae21b
  21. 05 Apr, 2007 1 commit
  22. 04 Apr, 2007 1 commit
    • Dann Frazier's avatar
      * bugfix/core-dump-unreadable-PT_INTERP.patch · 6fda70ba
      Dann Frazier authored
        [SECURITY] Fix a vulnerability that allows local users to read
        otherwise unreadable (but executable) files by triggering a core dump.
        See CVE-2007-0958
      
      svn path=/dists/etch-security/linux-2.6/; revision=8421
      6fda70ba
  23. 03 Apr, 2007 1 commit