[PATCH 0/6] hardy CVEs

Paolo Pisati paolo.pisati at canonical.com
Fri Jul 1 14:53:35 UTC 2011 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

CVE-2011-0711, CVE-2010-4249, CVE-2011-1170, CVE-2011-1171,
CVE-2011-1172 and CVE-2011-1173.

4249 came from lucid/master and applied cleanly, while the rest
had modifications or no ack whatsoever.

Alex Elder (1):
  xfs: zero proper structure size for geometry calls CVE-2011-0711

Eric Dumazet (1):
  af_unix: limit unix_tot_inflight CVE-2010-4249

Vasiliy Kulikov (4):
  netfilter: ip_tables: fix infoleak to userspace CVE-2011-1171
  econet: 4 byte infoleak to the network CVE-2011-1173
  netfilter: arp_tables: fix infoleak to userspace CVE-2011-1170
  ipv6: netfilter: ip6_tables: fix infoleak to userspace CVE-2011-1172

 fs/xfs/linux-2.6/xfs_ioctl.c    |   11 ++++++++---
 net/econet/af_econet.c          |    2 +-
 net/ipv4/netfilter/arp_tables.c |    3 +++
 net/ipv4/netfilter/ip_tables.c  |    3 +++
 net/ipv6/netfilter/ip6_tables.c |    3 +++
 net/unix/garbage.c              |    7 +++++++
 6 files changed, 25 insertions(+), 4 deletions(-)

- --
bye,
p.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJODd9vAAoJEMupOQaAohtU/FUH/3LRXH+A/TM03gXdCTMZdTDt
OZpwiUDRm9K1U8x/Dtvzo7Pyn8d55rpN/hg1Q6cBJuZk9a5et70Hao8lyq+c1fR8
vmyUwi6aTdqEBPhADLWURHJuSJsZT5mXu0gFd5tUL70x3WaSdjsvCKEdHgPajSJT
+ErbXL7i9MHNY2viM9Fh0F7a3isMge0pJULC68QkWRKMT4t/R70ET6ku5NHnZKEz
CrxT3kxYfvxC7qhj7uaQP2JDuHeZlAohfANjcOpn6OA4EAq69/1WhzzigyL4TF9r
4eEP/uaMch8ImoUd+w+oiUbNiVo71cY9TtC/lwli0dMcoIhxTR7M3GOwKs6BsAo=
=gkcB
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-af_unix-limit-unix_tot_inflight-CVE-2010-4249.patch
Type: text/x-patch
Size: 1784 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20110701/b421e1d3/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0002-xfs-zero-proper-structure-size-for-geometry-calls-CV.patch
Type: text/x-patch
Size: 2324 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20110701/b421e1d3/attachment-0001.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0003-netfilter-ip_tables-fix-infoleak-to-userspace-CVE-20.patch
Type: text/x-patch
Size: 2040 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20110701/b421e1d3/attachment-0002.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0004-econet-4-byte-infoleak-to-the-network-CVE-2011-1173.patch
Type: text/x-patch
Size: 1359 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20110701/b421e1d3/attachment-0003.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0005-netfilter-arp_tables-fix-infoleak-to-userspace-CVE-2.patch
Type: text/x-patch
Size: 2092 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20110701/b421e1d3/attachment-0004.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0006-ipv6-netfilter-ip6_tables-fix-infoleak-to-userspace-.patch
Type: text/x-patch
Size: 2094 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20110701/b421e1d3/attachment-0005.bin>

More information about the kernel-team mailing list