[ubuntu/lucid-security] linux (delayed), linux 2.6.32-25.45 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Oct 19 19:05:28 BST 2010


linux (2.6.32-25.45) lucid-security; urgency=low

  [ Upstream Kernel Changes ]

  * v4l: disable dangerous buggy compat function
    - CVE-2010-2963
  * Local privilege escalation vulnerability in RDS sockets
    - CVE-2010-3904
  * mm: (pre-stable) Move vma_stack_continue into mm.h
    - LP: #646114
  * net sched: fix some kernel memory leaks
    - CVE-2010-2942
  * irda: Correctly clean up self->ias_obj on irda_bind() failure.
    - CVE-2010-2954
  * wireless extensions: fix kernel heap content leak
    - CVE-2010-2955
  * KEYS: Fix RCU no-lock warning in keyctl_session_to_parent()
    - CVE-2010-2960
  * KEYS: Fix bug in keyctl_session_to_parent() if parent has no session
    keyring
    - CVE-2010-2960
  * aio: check for multiplication overflow in do_io_submit
    - CVE-2010-3067
  * xfs: prevent reading uninitialized stack memory
    - CVE-2010-3078
  * ALSA: seq/oss - Fix double-free at error path of snd_seq_oss_open()
    - CVE-2010-3080
  * niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL
    - CVE-2010-3084
  * rose: Fix signedness issues wrt. digi count.
    - CVE-2010-3310
  * sctp: Do not reset the packet during sctp_packet_config().
    - CVE-2010-3432
  * Fix pktcdvd ioctl dev_minor range check
    - CVE-2010-3437
  * ALSA: prevent heap corruption in snd_ctl_new()
    - CVE-2010-3442
  * net sched: fix kernel leak in act_police
    - CVE-2010-3477
  * Fix out-of-bounds reading in sctp_asoc_get_hmac()
    - CVE-2010-3705
  * ocfs2: Don't walk off the end of fast symlinks.
    - CVE-2010-NNN2

Date: Wed, 06 Oct 2010 16:16:20 +0100
Changed-By: Steve Conklin <sconklin at canonical.com>
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-25.45
-------------- next part --------------
Format: 1.8
Date: Wed, 06 Oct 2010 16:16:20 +0100
Source: linux
Binary: linux-source-2.6.32 linux-doc linux-tools-common linux-headers-2.6.32-25 linux-libc-dev linux-tools-2.6.32-25 linux-image-2.6.32-25-386 linux-headers-2.6.32-25-386 linux-image-2.6.32-25-386-dbgsym linux-image-2.6.32-25-generic linux-headers-2.6.32-25-generic linux-image-2.6.32-25-generic-dbgsym linux-image-2.6.32-25-generic-pae linux-headers-2.6.32-25-generic-pae linux-image-2.6.32-25-generic-pae-dbgsym linux-image-2.6.32-25-ia64 linux-headers-2.6.32-25-ia64 linux-image-2.6.32-25-ia64-dbgsym linux-image-2.6.32-25-lpia linux-headers-2.6.32-25-lpia linux-image-2.6.32-25-lpia-dbgsym linux-image-2.6.32-25-powerpc linux-headers-2.6.32-25-powerpc linux-image-2.6.32-25-powerpc-dbgsym linux-image-2.6.32-25-powerpc64-smp linux-headers-2.6.32-25-powerpc64-smp linux-image-2.6.32-25-powerpc64-smp-dbgsym linux-image-2.6.32-25-powerpc-smp linux-headers-2.6.32-25-powerpc-smp linux-image-2.6.32-25-powerpc-smp-dbgsym linux-image-2.6.32-25-preempt linux-headers-2.6.32-25-preempt
 linux-image-2.6.32-25-preempt-dbgsym linux-image-2.6.32-25-server linux-headers-2.6.32-25-server linux-image-2.6.32-25-server-dbgsym linux-image-2.6.32-25-sparc64 linux-headers-2.6.32-25-sparc64 linux-image-2.6.32-25-sparc64-dbgsym linux-image-2.6.32-25-sparc64-smp linux-headers-2.6.32-25-sparc64-smp linux-image-2.6.32-25-sparc64-smp-dbgsym linux-image-2.6.32-25-versatile linux-headers-2.6.32-25-versatile linux-image-2.6.32-25-versatile-dbgsym linux-image-2.6.32-25-virtual kernel-image-2.6.32-25-generic-di nic-modules-2.6.32-25-generic-di nic-shared-modules-2.6.32-25-generic-di serial-modules-2.6.32-25-generic-di ppp-modules-2.6.32-25-generic-di pata-modules-2.6.32-25-generic-di firewire-core-modules-2.6.32-25-generic-di scsi-modules-2.6.32-25-generic-di plip-modules-2.6.32-25-generic-di floppy-modules-2.6.32-25-generic-di fat-modules-2.6.32-25-generic-di nfs-modules-2.6.32-25-generic-di md-modules-2.6.32-25-generic-di usb-modules-2.6.32-25-generic-di
 pcmcia-storage-modules-2.6.32-25-generic-di fb-modules-2.6.32-25-generic-di input-modules-2.6.32-25-generic-di mouse-modules-2.6.32-25-generic-di irda-modules-2.6.32-25-generic-di parport-modules-2.6.32-25-generic-di nic-pcmcia-modules-2.6.32-25-generic-di pcmcia-modules-2.6.32-25-generic-di nic-usb-modules-2.6.32-25-generic-di sata-modules-2.6.32-25-generic-di crypto-modules-2.6.32-25-generic-di squashfs-modules-2.6.32-25-generic-di virtio-modules-2.6.32-25-generic-di char-modules-2.6.32-25-generic-di fs-core-modules-2.6.32-25-generic-di fs-secondary-modules-2.6.32-25-generic-di storage-core-modules-2.6.32-25-generic-di block-modules-2.6.32-25-generic-di message-modules-2.6.32-25-generic-di
 vlan-modules-2.6.32-25-generic-di
Architecture: source
Version: 2.6.32-25.45
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
Changed-By: Steve Conklin <sconklin at canonical.com>
Description: 
 block-modules-2.6.32-25-generic-di - Block storage devices (udeb)
 char-modules-2.6.32-25-generic-di - Character module support (udeb)
 crypto-modules-2.6.32-25-generic-di - crypto modules (udeb)
 fat-modules-2.6.32-25-generic-di - FAT filesystem support (udeb)
 fb-modules-2.6.32-25-generic-di - Framebuffer modules (udeb)
 firewire-core-modules-2.6.32-25-generic-di - Firewire (IEEE-1394) Support (udeb)
 floppy-modules-2.6.32-25-generic-di - Floppy driver support (udeb)
 fs-core-modules-2.6.32-25-generic-di - Base filesystem modules (udeb)
 fs-secondary-modules-2.6.32-25-generic-di - Extra filesystem modules (udeb)
 input-modules-2.6.32-25-generic-di - Support for various input methods (udeb)
 irda-modules-2.6.32-25-generic-di - Support for Infrared protocols (udeb)
 kernel-image-2.6.32-25-generic-di - Linux kernel binary image for the Debian installer (udeb)
 linux-doc  - Linux kernel specific documentation for version 2.6.32
 linux-headers-2.6.32-25 - Header files related to Linux kernel version 2.6.32
 linux-headers-2.6.32-25-386 - Linux kernel headers for version 2.6.32 on i386
 linux-headers-2.6.32-25-generic - Linux kernel headers for version 2.6.32 on x86/x86_64
 linux-headers-2.6.32-25-generic-pae - Linux kernel headers for version 2.6.32 on x86
 linux-headers-2.6.32-25-ia64 - Linux kernel headers for version 2.6.32 on IA-64 SMP
 linux-headers-2.6.32-25-lpia - Linux kernel headers for version 2.6.32 on Intel Atom processors
 linux-headers-2.6.32-25-powerpc - Linux kernel headers for version 2.6.32 on 32-bit PowerPC
 linux-headers-2.6.32-25-powerpc-smp - Linux kernel headers for version 2.6.32 on 32-bit PowerPC SMP
 linux-headers-2.6.32-25-powerpc64-smp - Linux kernel headers for version 2.6.32 on 64-bit PowerPC SMP
 linux-headers-2.6.32-25-preempt - Linux kernel headers for version 2.6.32 on x86_64
 linux-headers-2.6.32-25-server - Linux kernel headers for version 2.6.32 on x86_64
 linux-headers-2.6.32-25-sparc64 - Linux kernel headers for version 2.6.32 on 64-bit UltraSPARC
 linux-headers-2.6.32-25-sparc64-smp - Linux kernel headers for version 2.6.32 on 64-bit UltraSPARC SMP
 linux-headers-2.6.32-25-versatile - Linux kernel headers for version 2.6.32 on Versatile-based system
 linux-image-2.6.32-25-386 - Linux kernel image for version 2.6.32 on i386
 linux-image-2.6.32-25-386-dbgsym - Linux kernel debug image for version 2.6.32 on i386
 linux-image-2.6.32-25-generic - Linux kernel image for version 2.6.32 on x86/x86_64
 linux-image-2.6.32-25-generic-dbgsym - Linux kernel debug image for version 2.6.32 on x86/x86_64
 linux-image-2.6.32-25-generic-pae - Linux kernel image for version 2.6.32 on x86
 linux-image-2.6.32-25-generic-pae-dbgsym - Linux kernel debug image for version 2.6.32 on x86
 linux-image-2.6.32-25-ia64 - Linux kernel image for version 2.6.32 on IA-64 SMP
 linux-image-2.6.32-25-ia64-dbgsym - Linux kernel debug image for version 2.6.32 on IA-64 SMP
 linux-image-2.6.32-25-lpia - Linux kernel image for version 2.6.32 on Intel Atom processors
 linux-image-2.6.32-25-lpia-dbgsym - Linux kernel debug image for version 2.6.32 on Intel Atom process
 linux-image-2.6.32-25-powerpc - Linux kernel image for version 2.6.32 on 32-bit PowerPC
 linux-image-2.6.32-25-powerpc-dbgsym - Linux kernel debug image for version 2.6.32 on 32-bit PowerPC
 linux-image-2.6.32-25-powerpc-smp - Linux kernel image for version 2.6.32 on 32-bit PowerPC SMP
 linux-image-2.6.32-25-powerpc-smp-dbgsym - Linux kernel debug image for version 2.6.32 on 32-bit PowerPC SMP
 linux-image-2.6.32-25-powerpc64-smp - Linux kernel image for version 2.6.32 on 64-bit PowerPC SMP
 linux-image-2.6.32-25-powerpc64-smp-dbgsym - Linux kernel debug image for version 2.6.32 on 64-bit PowerPC SMP
 linux-image-2.6.32-25-preempt - Linux kernel image for version 2.6.32 on x86_64
 linux-image-2.6.32-25-preempt-dbgsym - Linux kernel debug image for version 2.6.32 on x86_64
 linux-image-2.6.32-25-server - Linux kernel image for version 2.6.32 on x86_64
 linux-image-2.6.32-25-server-dbgsym - Linux kernel debug image for version 2.6.32 on x86_64
 linux-image-2.6.32-25-sparc64 - Linux kernel image for version 2.6.32 on 64-bit UltraSPARC
 linux-image-2.6.32-25-sparc64-dbgsym - Linux kernel debug image for version 2.6.32 on 64-bit UltraSPARC
 linux-image-2.6.32-25-sparc64-smp - Linux kernel image for version 2.6.32 on 64-bit UltraSPARC SMP
 linux-image-2.6.32-25-sparc64-smp-dbgsym - Linux kernel debug image for version 2.6.32 on 64-bit UltraSPARC
 linux-image-2.6.32-25-versatile - Linux kernel image for version 2.6.32 on Versatile-based systems
 linux-image-2.6.32-25-versatile-dbgsym - Linux kernel debug image for version 2.6.32 on Versatile-based sy
 linux-image-2.6.32-25-virtual - Linux kernel image for version 2.6.32 on x86/x86_64
 linux-libc-dev - Linux Kernel Headers for development
 linux-source-2.6.32 - Linux kernel source for version 2.6.32 with Ubuntu patches
 linux-tools-2.6.32-25 - Linux kernel tools for version 2.6.32-25
 linux-tools-common - Linux kernel specific tools for version 2.6.32
 md-modules-2.6.32-25-generic-di - Multi-device support (raid, device-mapper, lvm) (udeb)
 message-modules-2.6.32-25-generic-di - Fusion and i2o storage modules (udeb)
 mouse-modules-2.6.32-25-generic-di - Mouse support (udeb)
 nfs-modules-2.6.32-25-generic-di - NFS filesystem drivers (udeb)
 nic-modules-2.6.32-25-generic-di - Network interface support (udeb)
 nic-pcmcia-modules-2.6.32-25-generic-di - PCMCIA network interface support (udeb)
 nic-shared-modules-2.6.32-25-generic-di - nic shared modules (udeb)
 nic-usb-modules-2.6.32-25-generic-di - USB network interface support (udeb)
 parport-modules-2.6.32-25-generic-di - Parallel port support (udeb)
 pata-modules-2.6.32-25-generic-di - PATA support modules (udeb)
 pcmcia-modules-2.6.32-25-generic-di - PCMCIA Modules (udeb)
 pcmcia-storage-modules-2.6.32-25-generic-di - PCMCIA storage support (udeb)
 plip-modules-2.6.32-25-generic-di - PLIP (parallel port) networking support (udeb)
 ppp-modules-2.6.32-25-generic-di - PPP (serial port) networking support (udeb)
 sata-modules-2.6.32-25-generic-di - SATA storage support (udeb)
 scsi-modules-2.6.32-25-generic-di - SCSI storage support (udeb)
 serial-modules-2.6.32-25-generic-di - Serial port support (udeb)
 squashfs-modules-2.6.32-25-generic-di - squashfs modules (udeb)
 storage-core-modules-2.6.32-25-generic-di - Core storage support (udeb)
 usb-modules-2.6.32-25-generic-di - Core USB support (udeb)
 virtio-modules-2.6.32-25-generic-di - VirtIO Modules (udeb)
 vlan-modules-2.6.32-25-generic-di - vlan modules (udeb)
Launchpad-Bugs-Fixed: 646114
Changes: 
 linux (2.6.32-25.45) lucid-security; urgency=low
 .
   [ Upstream Kernel Changes ]
 .
   * v4l: disable dangerous buggy compat function
     - CVE-2010-2963
   * Local privilege escalation vulnerability in RDS sockets
     - CVE-2010-3904
   * mm: (pre-stable) Move vma_stack_continue into mm.h
     - LP: #646114
   * net sched: fix some kernel memory leaks
     - CVE-2010-2942
   * irda: Correctly clean up self->ias_obj on irda_bind() failure.
     - CVE-2010-2954
   * wireless extensions: fix kernel heap content leak
     - CVE-2010-2955
   * KEYS: Fix RCU no-lock warning in keyctl_session_to_parent()
     - CVE-2010-2960
   * KEYS: Fix bug in keyctl_session_to_parent() if parent has no session
     keyring
     - CVE-2010-2960
   * aio: check for multiplication overflow in do_io_submit
     - CVE-2010-3067
   * xfs: prevent reading uninitialized stack memory
     - CVE-2010-3078
   * ALSA: seq/oss - Fix double-free at error path of snd_seq_oss_open()
     - CVE-2010-3080
   * niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL
     - CVE-2010-3084
   * rose: Fix signedness issues wrt. digi count.
     - CVE-2010-3310
   * sctp: Do not reset the packet during sctp_packet_config().
     - CVE-2010-3432
   * Fix pktcdvd ioctl dev_minor range check
     - CVE-2010-3437
   * ALSA: prevent heap corruption in snd_ctl_new()
     - CVE-2010-3442
   * net sched: fix kernel leak in act_police
     - CVE-2010-3477
   * Fix out-of-bounds reading in sctp_asoc_get_hmac()
     - CVE-2010-3705
   * ocfs2: Don't walk off the end of fast symlinks.
     - CVE-2010-NNN2
Checksums-Sha1: 
 e9248f0528b2c9e9a321c3b5e58b49bdb3f4acdd 4814 linux_2.6.32-25.45.dsc
 fe59e7b95581790735061100db4c8dcd8654f24e 5060002 linux_2.6.32-25.45.diff.gz
Checksums-Sha256: 
 305a3b3ecf609b55809d9cd0a7e71d4baa85fcd1d4101d51118236235dc11004 4814 linux_2.6.32-25.45.dsc
 662ec4aeedba770a0aa84458ca36299c9c41b2b52db951894fd049b2b06aec99 5060002 linux_2.6.32-25.45.diff.gz
Files: 
 e7eb67c2dc430ad1c030dc7d572bc402 4814 devel optional linux_2.6.32-25.45.dsc
 75c8e4d49819c3b61c42c1af1360adc3 5060002 devel optional linux_2.6.32-25.45.diff.gz


More information about the Lucid-changes mailing list