[ubuntu/intrepid-security] linux 2.6.27-16.44 (Accepted)

Ubuntu Installer archive at ubuntu.com
Fri Dec 4 18:05:08 GMT 2009 

linux (2.6.27-16.44) intrepid-security; urgency=low

  [ Leann Ogasawara ]

  * [SCSI] megaraid_sas: remove sysfs poll_mode_io world writeable
    permissions
    - CVE-2009-3939

  [ Upstream Kernel Changes ]

  * net ax25: Fix signed comparison in the sockopt handler
    - CVE-2009-2909
  * x86: Don't leak 64-bit kernel register values to 32-bit processes
    - CVE-2009-2910
  * tc: Fix unitialized kernel memory leak
    - CVE-2009-3228
  * fs: pipe.c null pointer dereference
    - CVE-2009-3547
  * netlink: fix typo in initialization
    - CVE-2009-3612
  * r8169: use hardware auto-padding.
    - CVE-2009-3613
  * drm/r128: Add test for initialisation to all ioctls that require it
    - CVE-2009-3620
  * AF_UNIX: Fix deadlock on connecting to shutdown socket
    - CVE-2009-3621
  * KVM: Prevent overflow in KVM_GET_SUPPORTED_CPUID
    - CVE-2009-3638
  * KVM: VMX: Check cpl before emulating debug register access
    - CVE-2009-3722
  * connector: Keep the skb in cn_callback_data
    - CVE-2009-3725
  * connector: Provide the sender's credentials to the callback
    - CVE-2009-3725
  * connector: Fix incompatible pointer type warning
    - CVE-2009-3725
  * uvesafb/connector: Disallow unpliviged users to send netlink packets
    - CVE-2009-3725
  * NFSv4: Fix a problem whereby a buggy server can oops the kernel
    - CVE-2009-3726
  * isdn: hfc_usb: Fix read buffer overflow
    - CVE-2009-4005
  * gdth: Prevent negative offsets in ioctl CVE-2009-3080
    - CVE-2009-3080

Date: Mon, 23 Nov 2009 13:50:23 -0800
Changed-By: Leann Ogasawara <leann.ogasawara at canonical.com>
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
https://launchpad.net/ubuntu/intrepid/+source/linux/2.6.27-16.44
-------------- next part --------------
Format: 1.8
Date: Mon, 23 Nov 2009 13:50:23 -0800
Source: linux
Binary: linux-source-2.6.27 linux-doc-2.6.27 linux-headers-2.6.27-16 linux-libc-dev linux-image-2.6.27-16-generic linux-headers-2.6.27-16-generic linux-image-debug-2.6.27-16-generic linux-image-2.6.27-16-server linux-headers-2.6.27-16-server linux-image-debug-2.6.27-16-server linux-image-2.6.27-16-virtual
Architecture: source
Version: 2.6.27-16.44
Distribution: intrepid-security
Urgency: low
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
Changed-By: Leann Ogasawara <leann.ogasawara at canonical.com>
Description: 
 linux-doc-2.6.27 - Linux kernel specific documentation for version 2.6.27
 linux-headers-2.6.27-16 - Header files related to Linux kernel version 2.6.27
 linux-headers-2.6.27-16-generic - Linux kernel headers for version 2.6.27 on x86/x86_64
 linux-headers-2.6.27-16-server - Linux kernel headers for version 2.6.27 on x86/x86_64
 linux-image-2.6.27-16-generic - Linux kernel image for version 2.6.27 on x86/x86_64
 linux-image-2.6.27-16-server - Linux kernel image for version 2.6.27 on x86/x86_64
 linux-image-2.6.27-16-virtual - Linux kernel image for version 2.6.27 on x86/x86_64
 linux-image-debug-2.6.27-16-generic - Linux kernel debug image for version 2.6.27 on x86/x86_64
 linux-image-debug-2.6.27-16-server - Linux kernel debug image for version 2.6.27 on x86/x86_64
 linux-libc-dev - Linux Kernel Headers for development
 linux-source-2.6.27 - Linux kernel source for version 2.6.27 with Ubuntu patches
Changes: 
 linux (2.6.27-16.44) intrepid-security; urgency=low
 .
   [ Leann Ogasawara ]
 .
   * [SCSI] megaraid_sas: remove sysfs poll_mode_io world writeable
     permissions
     - CVE-2009-3939
 .
   [ Upstream Kernel Changes ]
 .
   * net ax25: Fix signed comparison in the sockopt handler
     - CVE-2009-2909
   * x86: Don't leak 64-bit kernel register values to 32-bit processes
     - CVE-2009-2910
   * tc: Fix unitialized kernel memory leak
     - CVE-2009-3228
   * fs: pipe.c null pointer dereference
     - CVE-2009-3547
   * netlink: fix typo in initialization
     - CVE-2009-3612
   * r8169: use hardware auto-padding.
     - CVE-2009-3613
   * drm/r128: Add test for initialisation to all ioctls that require it
     - CVE-2009-3620
   * AF_UNIX: Fix deadlock on connecting to shutdown socket
     - CVE-2009-3621
   * KVM: Prevent overflow in KVM_GET_SUPPORTED_CPUID
     - CVE-2009-3638
   * KVM: VMX: Check cpl before emulating debug register access
     - CVE-2009-3722
   * connector: Keep the skb in cn_callback_data
     - CVE-2009-3725
   * connector: Provide the sender's credentials to the callback
     - CVE-2009-3725
   * connector: Fix incompatible pointer type warning
     - CVE-2009-3725
   * uvesafb/connector: Disallow unpliviged users to send netlink packets
     - CVE-2009-3725
   * NFSv4: Fix a problem whereby a buggy server can oops the kernel
     - CVE-2009-3726
   * isdn: hfc_usb: Fix read buffer overflow
     - CVE-2009-4005
   * gdth: Prevent negative offsets in ioctl CVE-2009-3080
     - CVE-2009-3080
Checksums-Sha1: 
 6474214730bd41d62d36e8f0773d8c7cc5fbd7b3 1529 linux_2.6.27-16.44.dsc
 f646b4249eaed9ff5c170cea91697cce7647b5ec 3201881 linux_2.6.27-16.44.diff.gz
Checksums-Sha256: 
 be3d872f9cfc7c12d077ae17636d8294b8400aca1e667df2916dd9c9cb9886bc 1529 linux_2.6.27-16.44.dsc
 2b84785e367497ee4a8e6cb6be1fd690b2aa5f235a133db67ad9c1cbc8b1f705 3201881 linux_2.6.27-16.44.diff.gz
Files: 
 72c6a430036e019404f02d0c19ea4a3e 1529 devel optional linux_2.6.27-16.44.dsc
 c8d86a4f3dea755b24836e8367cda4e0 3201881 devel optional linux_2.6.27-16.44.diff.gz

More information about the Intrepid-changes mailing list