Accepted linux-source-2.6.9 2.6.9-6 (source)
Fabio M. Di Nitto
fabbione at fabbione.net
Wed Dec 15 02:00:18 CST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 13 Dec 2004 09:53:24 +0100
Source: linux-source-2.6.9
Binary: linux-headers-2.6.9-1-686-smp linux-headers-2.6.9-1-mckinley linux-headers-2.6.9-1-386 linux-image-2.6.9-1-itanium-smp linux-image-2.6.9-1-amd64-xeon linux-doc-2.6.9 linux-image-2.6.9-1-power3 linux-image-2.6.9-1-itanium linux-image-2.6.9-1-power4 linux-headers-2.6.9-1-k7 linux-patch-debian-2.6.9 linux-image-2.6.9-1-k7 linux-headers-2.6.9-1-power3 linux-headers-2.6.9-1-sparc64-smp linux-image-2.6.9-1-powerpc linux-headers-2.6.9-1-sparc64 linux-headers-2.6.9-1-mckinley-smp linux-image-2.6.9-1-mckinley-smp linux-headers-2.6.9-1-itanium-smp linux-image-2.6.9-1-sparc64 linux-headers-2.6.9-1-power4-smp linux-image-2.6.9-1-power3-smp linux-image-2.6.9-1-amd64-generic linux-headers-2.6.9-1-power4 linux-headers-2.6.9-1 linux-headers-2.6.9-1-amd64-k8-smp linux-tree-2.6.9 linux-headers-2.6.9-1-amd64-k8 linux-source-2.6.9 linux-image-2.6.9-1-amd64-k8 linux-image-2.6.9-1-powerpc-smp linux-image-2.6.9-1-mckinley linux-headers-2.6.9-1-686 linux-image-2.6.9-1-amd64-k8-smp linux-headers-2.6.9-1-itanium linux-headers-2.6.9-1-amd64-xeon linux-headers-2.6.9-1-amd64-generic linux-image-2.6.9-1-power4-smp linux-image-2.6.9-1-386 linux-headers-2.6.9-1-powerpc linux-headers-2.6.9-1-powerpc-smp linux-image-2.6.9-1-686 linux-image-2.6.9-1-sparc64-smp linux-image-2.6.9-1-686-smp linux-headers-2.6.9-1-k7-smp linux-image-2.6.9-1-k7-smp linux-headers-2.6.9-1-power3-smp
Architecture: source
Version: 2.6.9-6
Distribution: hoary
Urgency: low
Maintainer: Fabio M. Di Nitto <fabbione at fabbione.net>
Changed-By: Fabio M. Di Nitto <fabbione at fabbione.net>
Description:
linux-doc-2.6.9 - Linux kernel specific documentation for version 2.6.9
linux-headers-2.6.9-1 - Header files related to Linux kernel version 2.6.9
linux-headers-2.6.9-1-386 - Linux kernel headers 2.6.9 on 386
linux-headers-2.6.9-1-686 - Linux kernel headers 2.6.9 on PPro/Celeron/PII/PIII/PIV
linux-headers-2.6.9-1-686-smp - Linux kernel headers 2.6.9 on PPro/Celeron/PII/PIII/PIV SMP
linux-headers-2.6.9-1-amd64-generic - Linux kernel headers 2.6.9 on x86_64
linux-headers-2.6.9-1-amd64-k8 - Linux kernel headers 2.6.9 on AMD K8
linux-headers-2.6.9-1-amd64-k8-smp - Linux kernel headers 2.6.9 on AMD K8 SMP
linux-headers-2.6.9-1-amd64-xeon - Linux kernel headers 2.6.9 on Intel x86_64
linux-headers-2.6.9-1-itanium - Linux kernel headers 2.6.9 on Itanium
linux-headers-2.6.9-1-itanium-smp - Linux kernel headers 2.6.9 on Itanium SMP
linux-headers-2.6.9-1-k7 - Linux kernel headers 2.6.9 on AMD K7
linux-headers-2.6.9-1-k7-smp - Linux kernel headers 2.6.9 on AMD K7 SMP
linux-headers-2.6.9-1-mckinley - Linux kernel headers 2.6.9 on Itanium II
linux-headers-2.6.9-1-mckinley-smp - Linux kernel headers 2.6.9 on Itanium II SMP
linux-headers-2.6.9-1-power3 - Linux kernel headers 2.6.9 on Power3
linux-headers-2.6.9-1-power3-smp - Linux kernel headers 2.6.9 on Power3 SMP
linux-headers-2.6.9-1-power4 - Linux kernel headers 2.6.9 on Power4
linux-headers-2.6.9-1-power4-smp - Linux kernel headers 2.6.9 on Power4 SMP
linux-headers-2.6.9-1-powerpc - Linux kernel headers 2.6.9 on PowerPC
linux-headers-2.6.9-1-powerpc-smp - Linux kernel headers 2.6.9 on PowerPC SMP
linux-headers-2.6.9-1-sparc64 - Linux kernel headers 2.6.9 on uniprocessor 64-bit SPARC
linux-headers-2.6.9-1-sparc64-smp - Header files for Linux kernel 2.6.9 on multiprocessor 64-bit SPAR
linux-image-2.6.9-1-386 - Linux kernel image for version 2.6.9 on 386.
linux-image-2.6.9-1-686 - Linux kernel image for version 2.6.9 on PPro/Celeron/PII/PIII/PIV
linux-image-2.6.9-1-686-smp - Linux kernel image for version 2.6.9 on PPro/Celeron/PII/PIII/PIV
linux-image-2.6.9-1-amd64-generic - Linux kernel image for version 2.6.9 on x86_64.
linux-image-2.6.9-1-amd64-k8 - Linux kernel image for version 2.6.9 on AMD K8.
linux-image-2.6.9-1-amd64-k8-smp - Linux kernel image for version 2.6.9 on AMD K8 SMP.
linux-image-2.6.9-1-amd64-xeon - Linux kernel image for version 2.6.9 on Intel x86_64.
linux-image-2.6.9-1-itanium - Linux kernel image for version 2.6.9 on Itanium
linux-image-2.6.9-1-itanium-smp - Linux kernel image for version 2.6.9 on Itanium SMP
linux-image-2.6.9-1-k7 - Linux kernel image for version 2.6.9 on AMD K7.
linux-image-2.6.9-1-k7-smp - Linux kernel image for version 2.6.9 on AMD K7 SMP.
linux-image-2.6.9-1-mckinley - Linux kernel image for version 2.6.9 on Itanium II
linux-image-2.6.9-1-mckinley-smp - Linux kernel image for version 2.6.9 on Itanium II SMP
linux-image-2.6.9-1-power3 - Linux kernel image for version 2.6.9 on Power3.
linux-image-2.6.9-1-power3-smp - Linux kernel image for version 2.6.9 on Power3 SMP.
linux-image-2.6.9-1-power4 - Linux kernel image for version 2.6.9 on Power4.
linux-image-2.6.9-1-power4-smp - Linux kernel image for version 2.6.9 on Power4 SMP.
linux-image-2.6.9-1-powerpc - Linux kernel image for version 2.6.9 on PowerPC.
linux-image-2.6.9-1-powerpc-smp - Linux kernel image for version 2.6.9 on PowerPC SMP.
linux-image-2.6.9-1-sparc64 - Linux kernel binary image for UltraSPARC (sparc64) systems
linux-image-2.6.9-1-sparc64-smp - Linux kernel binary image for SMP UltraSPARC (sparc64) systems
linux-patch-debian-2.6.9 - Debian patches to Linux 2.6.9
linux-source-2.6.9 - Linux kernel source for version 2.6.9 with Debian patches
linux-tree-2.6.9 - Linux kernel tree for building prepackaged Debian kernel images
Changes:
linux-source-2.6.9 (2.6.9-6) hoary; urgency=low
.
* [SECURITY] Fix multiple IGMP handling vulnerabilities.
. Add patch fix-igmp.dpatch. (CAN-2004-1137)
.
There are multiple serious issues with the igmp.c code in recent kernel
versions. Here an incomplete list of bugs:
.
1) ip_mc_source suffers from a serious kernel deadlock & kernel memory
overwrite problem. It is possible to decrement the psl->sl_count counter
to be 0xffffffff == -1 with the consequence that:
.
- a repeated call will start a loop counting from 0 to UINT_MAX causing a
kernel hang for minutes (depending on the machine speed), then the
whole kernel memory following the kmalloc'ated buffer will be shifted
by 4 bytes causing an immediate reboot.
.
- If properly exploited this will lead to elevated privileges.
.
2) because of the bug 1) it is possible to read huge portions of kernel
memory through ip_mc_msfget()
.
3) igmp_marksources() function is called in the context of an IGMP group
query and suffers from an out of bound access to kernel memory. This is
remotely exploitable if applications have bound a multicast socket.
.
This bug allows in the best case to remotely DoS a Linux machine with just
a moderate flow of prepared IGMP packets.
.
In the worst case (the socket buffer allocated for the packet is at the
end of kernel accessible memory), the Linux machine may be crashed
remotely.
.
* Ship cloop as modules on sparc:
. Fix FTBFS.
. Update config file:
- CONFIG_BLK_DEV_CLOOP=m.
. Add debian/d-i/sparc/modules/sparc64/loop-modules to include cloop.o.
Note: loop-modules for sparc is not a lnk to the one shipped by
kernel-wedge since loop.o is compiled in.
.
* Update the cloop help text specifing that the code cannot be compiled in.
It must be a module.
Files:
84f862d88e49aa5897e04c8ac0582bff 2312 devel optional linux-source-2.6.9_2.6.9-6.dsc
55b4a7384ed0e0213a23232fc42effd5 3548209 devel optional linux-source-2.6.9_2.6.9-6.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFBvXoFhCzbekR3nhgRAgDaAJ42UfBI22nVijeJbMZL+x5SHIwDogCfSTwd
nxJ6hdSkrZ3UtVWMJIXi//U=
=MedB
-----END PGP SIGNATURE-----
Accepted:
linux-source-2.6.9_2.6.9-6.diff.gz
to pool/main/l/linux-source-2.6.9/linux-source-2.6.9_2.6.9-6.diff.gz
linux-source-2.6.9_2.6.9-6.dsc
to pool/main/l/linux-source-2.6.9/linux-source-2.6.9_2.6.9-6.dsc
More information about the hoary-changes
mailing list