[plamo:28481] linux-2.6.23が出ました。

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[plamo:28481] linux-2.6.23が出ました。

From:名倉昭一

Date:Wed, 10 Oct 2007 09:24:11 +0900 (JST)

Subject: [plamo:28481] linux-2.6.23が出ました。
From: 名倉昭一<nagura-s@xxxxxxxxxxxx>
Date: Wed, 10 Oct 2007 09:24:09 +0900

 　名倉 です。

　　linux-2.6.23が出ました。
　　以下はChangelog-2.6.23の抜粋です。

　　commit 176df2457ef6207156ca1a40991c54ca01fef567
　　Author: Andi Kleen <ak@xxxxxxx>
　　Date:   Fri Sep 21 16:16:18 2007 +0200

    x86_64: Zero extend all registers after ptrace in 32bit entry path.
    
    Strictly it's only needed for eax.
    
    It actually does a little more than strictly needed -- the other registers
    are already zero extended.
    
    Also remove the now unnecessary and non functional compat task check
    in ptrace.
    
    This is CVE-2007-4573
    
    Found by Wojciech Purczynski
    
    Signed-off-by: Andi Kleen <ak@xxxxxxx>
    Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>

　　commit 5a021e9ffd56c22700133ebc37d607f95be8f7bd
　　Author: Matt Mackall <mpm@xxxxxxxxxxx>
　　Date:   Thu Jul 19 11:30:14 2007 -0700

    random: fix bound check ordering (CVE-2007-3105)
    
    If root raised the default wakeup threshold over the size of the
    output pool, the pool transfer function could overflow the stack with
    RNG bytes, causing a DoS or potential privilege escalation.
    
    (Bug reported by the PaX Team <pageexec@xxxxxxxxxxx>)
    
    Cc: Theodore Tso <tytso@xxxxxxx>
    Cc: Willy Tarreau <w@xxxxxx>
    Signed-off-by: Matt Mackall <mpm@xxxxxxxxxxx>
    Signed-off-by: Chris Wright <chrisw@xxxxxxxxxxxx>
    Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>

　　commit 99d24edeb6abc6ca3a0d0fbdb83c664c04403c8c
　　Author: Patrick McHardy <kaber@xxxxxxxxx>
　　Date:   Tue Jul 10 23:24:52 2007 -0700

    [NETFILTER]: {ip, nf}_conntrack_sctp: fix remotely triggerable NULL ptr dereference (CVE-2007-2876)
    
    When creating a new connection by sending an unknown chunk type, we
    don't transition to a valid state, causing a NULL pointer dereference
    in sctp_packet when accessing sctp_timeouts[SCTP_CONNTRACK_NONE].
    
    Fix by don't creating new conntrack entry if initial state is invalid.
    
    Noticed by Vilmos Nebehaj <vilmos.nebehaj@xxxxxxxxx>
    
    Signed-off-by: Patrick McHardy <kaber@xxxxxxxxx>
    Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxx>
    Signed-off-by: Chris Wright <chrisw@xxxxxxxxxxxx>
    Signed-off-by: David S. Miller <davem@xxxxxxxxxxxxx>

Prev by Date: [plamo:28480] Re: rc.modules:/sbin/depmod -a
Next by Date: [plamo:28482] Plamo4.21-Nvidiaドライバのインストール
Previous by thread: [plamo:28475] libpng
Next by thread: [plamo:28482] Plamo4.21-Nvidiaドライバのインストール
Index(es):
- Date
- Thread

[検索ページ] [メール一覧]
Plamo ML 公開システム