[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[plamo:28481] linux-2.6.23が出ました。
-
From:名倉昭一
-
Date:Wed, 10 Oct 2007 09:24:11 +0900 (JST)
- Subject: [plamo:28481] linux-2.6.23が出ました。
- From: 名倉昭一<nagura-s@xxxxxxxxxxxx>
- Date: Wed, 10 Oct 2007 09:24:09 +0900
名倉 です。
linux-2.6.23が出ました。
以下はChangelog-2.6.23の抜粋です。
commit 176df2457ef6207156ca1a40991c54ca01fef567
Author: Andi Kleen <ak@xxxxxxx>
Date: Fri Sep 21 16:16:18 2007 +0200
x86_64: Zero extend all registers after ptrace in 32bit entry path.
Strictly it's only needed for eax.
It actually does a little more than strictly needed -- the other registers
are already zero extended.
Also remove the now unnecessary and non functional compat task check
in ptrace.
This is CVE-2007-4573
Found by Wojciech Purczynski
Signed-off-by: Andi Kleen <ak@xxxxxxx>
Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
commit 5a021e9ffd56c22700133ebc37d607f95be8f7bd
Author: Matt Mackall <mpm@xxxxxxxxxxx>
Date: Thu Jul 19 11:30:14 2007 -0700
random: fix bound check ordering (CVE-2007-3105)
If root raised the default wakeup threshold over the size of the
output pool, the pool transfer function could overflow the stack with
RNG bytes, causing a DoS or potential privilege escalation.
(Bug reported by the PaX Team <pageexec@xxxxxxxxxxx>)
Cc: Theodore Tso <tytso@xxxxxxx>
Cc: Willy Tarreau <w@xxxxxx>
Signed-off-by: Matt Mackall <mpm@xxxxxxxxxxx>
Signed-off-by: Chris Wright <chrisw@xxxxxxxxxxxx>
Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
commit 99d24edeb6abc6ca3a0d0fbdb83c664c04403c8c
Author: Patrick McHardy <kaber@xxxxxxxxx>
Date: Tue Jul 10 23:24:52 2007 -0700
[NETFILTER]: {ip, nf}_conntrack_sctp: fix remotely triggerable NULL ptr dereference (CVE-2007-2876)
When creating a new connection by sending an unknown chunk type, we
don't transition to a valid state, causing a NULL pointer dereference
in sctp_packet when accessing sctp_timeouts[SCTP_CONNTRACK_NONE].
Fix by don't creating new conntrack entry if initial state is invalid.
Noticed by Vilmos Nebehaj <vilmos.nebehaj@xxxxxxxxx>
Signed-off-by: Patrick McHardy <kaber@xxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxx>
Signed-off-by: Chris Wright <chrisw@xxxxxxxxxxxx>
Signed-off-by: David S. Miller <davem@xxxxxxxxxxxxx>
[検索ページ]
[メール一覧]
Plamo ML 公開システム