-
Committer:
Bazaar Package Importer
-
Author(s):
Leann Ogasawara, Leann Ogasawara, Upstream Kernel Changes
-
Date:
2010-12-01 10:32:18 UTC
-
mfrom:
(35.1.27 dapper-security)
-
Revision ID:
james.westby@ubuntu.com-20101201103218-lxr9acbvk5a3ti6s
Tags: 2.6.15-55.91
[ Leann Ogasawara ]
-Â LP:Â #683908
* Revert "SAUCE: AF_ECONET saddr->cookie prevent NULL pointer
  dereference"
* Revert "SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges"
* Revert "SAUCE: AF_ECONET prevent kernel stack overflow"
[Upstream Kernel Changes]
* xfs: validate untrusted inode numbers during lookup
  - CVE-2010-2943
* xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED
  - CVE-2010-2943
* xfs: remove block number from inode lookup code
  - CVE-2010-2943
* xfs: fix untrusted inode number lookup
  - CVE-2010-2943
* drivers/net/eql.c: prevent reading uninitialized stack memory
  - CVE-2010-3297
* ipc: shm: fix information leak to userland
  - CVE-2010-4072
* econet: disallow NULL remote addr for sendmsg(), fixes CVE-2010-3849
  - CVE-2010-3849
* econet: fix CVE-2010-3850
  - CVE-2010-3850
* econet: fix CVE-2010-3848
  - CVE-2010-3848