~ubuntu-branches/ubuntu/dapper/linux-source-2.6.15/dapper-proposed

Viewing all changes in revision 42.

  • Committer: Bazaar Package Importer
  • Author(s): Leann Ogasawara, Leann Ogasawara, Upstream Kernel Changes
  • Date: 2010-12-01 10:32:18 UTC
  • mfrom: (35.1.27 dapper-security)
  • Revision ID: james.westby@ubuntu.com-20101201103218-lxr9acbvk5a3ti6s
Tags: 2.6.15-55.91
[ Leann Ogasawara ]

- LP: #683908
* Revert "SAUCE: AF_ECONET saddr->cookie prevent NULL pointer
  dereference"
* Revert "SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges"
* Revert "SAUCE: AF_ECONET prevent kernel stack overflow"

[Upstream Kernel Changes]

* xfs: validate untrusted inode numbers during lookup
  - CVE-2010-2943
* xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED
  - CVE-2010-2943
* xfs: remove block number from inode lookup code
  - CVE-2010-2943
* xfs: fix untrusted inode number lookup
  - CVE-2010-2943
* drivers/net/eql.c: prevent reading uninitialized stack memory
  - CVE-2010-3297
* ipc: shm: fix information leak to userland
  - CVE-2010-4072
* econet: disallow NULL remote addr for sendmsg(), fixes CVE-2010-3849
  - CVE-2010-3849
* econet: fix CVE-2010-3850
  - CVE-2010-3850
* econet: fix CVE-2010-3848
  - CVE-2010-3848

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: