[ubuntu/lucid-updates] linux-ec2 2.6.32-373.90 (Accepted)

Adam Conrad adconrad at 0c3.net
Thu Dec 11 00:21:56 UTC 2014


linux-ec2 (2.6.32-373.90) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-69.136
  * Release Tracking Bug
    - LP: #1395971

  [ Ubuntu: 2.6.32-69.136 ]

  * net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks
    - LP: #1386367
    - CVE-2014-3673
  * net: sctp: fix panic on duplicate ASCONF chunks
    - LP: #1386392
    - CVE-2014-3687
  * net: sctp: fix remote memory pressure from excessive queueing
    - LP: #1386393
    - CVE-2014-3688
  * mac80211: fix fragmentation code, particularly for encryption
    - LP: #1392013
    - CVE-2014-8709
  * ttusb-dec: buffer overflow in ioctl
    - LP: #1395187
    - CVE-2014-8884
  * net: sctp: fix NULL pointer dereference in af->from_addr_param on
    malformed packet
    - LP: #1392820
    - CVE-2014-7841

Date: 2014-11-25 14:00:22.516878+00:00
Changed-By: Stefan Bader <stefan.bader at canonical.com>
Signed-By: Adam Conrad <adconrad at 0c3.net>
https://launchpad.net/ubuntu/+source/linux-ec2/2.6.32-373.90
-------------- next part --------------
Sorry, changesfile not available.


More information about the Lucid-changes mailing list