Dapper SRU, CVE-2010-3859
Tim Gardner
tim.gardner at canonical.com
Fri Jan 28 13:43:11 UTC 2011
On 01/28/2011 02:51 AM, Stefan Bader wrote:
> On 01/27/2011 11:15 PM, Tim Gardner wrote:
>> The following changes since commit 935dc7c143df82eed4efe22af6f5d54a9e63e42d:
>> Dan Rosenberg (1):
>> drivers/video/sis/sis_main.c: prevent reading uninitialized stack memory, CVE-2010-4078
>>
>> are available in the git repository at:
>>
>> git://kernel.ubuntu.com/rtg/ubuntu-dapper.git CVE-2010-3859
>>
>> David S. Miller (1):
>> net: Limit socket I/O iovec total length to INT_MAX., CVE-2010-3859
>>
>> Tim Gardner (1):
>> net: Truncate recvfrom and sendto length to INT_MAX., CVE-2010-3859
>>
>> net/compat.c | 4 ++++
>> net/core/iovec.c | 15 +++++++--------
>> net/socket.c | 6 ++++++
>> 3 files changed, 17 insertions(+), 8 deletions(-)
>>
>> From 56dbc8e48a729838dc4e625bdc00f594d06690cd Mon Sep 17 00:00:00 2001
>> From: Tim Gardner<tim.gardner at canonical.com>
>> Date: Thu, 27 Jan 2011 13:57:38 -0700
>> Subject: [PATCH 1/2] net: Truncate recvfrom and sendto length to INT_MAX., CVE-2010-3859
>>
>> BugLink: http://bugs/launchpad.net/bugs/708839
> ^
> bugs. not bugs/
>
> Seems to go into the same direction, but how does one find out. (Just interest)
>>
corrected
--
Tim Gardner tim.gardner at canonical.com
More information about the kernel-team
mailing list