-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 29 May 2006 09:55:07 -0600 Source: kernel-image-2.4.27-ia64 Binary: kernel-image-2.4.27-3-itanium kernel-image-2.4-mckinley-smp kernel-image-2.4.27-3-itanium-smp kernel-image-2.4-itanium kernel-headers-2.4.27-3-mckinley kernel-image-2.4.27-3-mckinley-smp kernel-build-2.4.27-3 kernel-headers-2.4.27-3-mckinley-smp kernel-image-2.4-itanium-smp kernel-image-2.4-mckinley kernel-headers-2.4.27-3 kernel-image-2.4.27-3-mckinley kernel-headers-2.4.27-3-itanium kernel-headers-2.4.27-3-itanium-smp Architecture: source ia64 Version: 2.4.27-10sarge3 Distribution: stable-security Urgency: high Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org> Changed-By: dann frazier <dannf@debian.org> Description: kernel-build-2.4.27-3 - Headers for building modules for Linux 2.4.27 kernel-headers-2.4.27-3 - Header files related to Linux kernel version 2.4.27 kernel-headers-2.4.27-3-itanium - Linux kernel headers 2.4.27 on ia64 kernel-headers-2.4.27-3-itanium-smp - Linux kernel headers 2.4.27 on Itanium SMP kernel-headers-2.4.27-3-mckinley - Linux kernel headers 2.4.27 on ia64 kernel-headers-2.4.27-3-mckinley-smp - Linux kernel headers 2.4.27 on Itanium II SMP kernel-image-2.4-itanium - Linux kernel image for version 2.4 on Itanium kernel-image-2.4-itanium-smp - Linux kernel image for version 2.4 on Itanium SMP kernel-image-2.4-mckinley - Linux kernel image for version 2.4 on Itanium II kernel-image-2.4-mckinley-smp - Linux kernel image for version 2.4 on Itanium II SMP kernel-image-2.4.27-3-itanium - Linux kernel image for version 2.4.27 on Itanium kernel-image-2.4.27-3-itanium-smp - Linux kernel image for version 2.4.27 on Itanium SMP kernel-image-2.4.27-3-mckinley - Linux kernel image for version 2.4.27 on Itanium II kernel-image-2.4.27-3-mckinley-smp - Linux kernel image for version 2.4.27 on Itanium II SMP Changes: kernel-image-2.4.27-ia64 (2.4.27-10sarge3) stable-security; urgency=high . * Build against kernel-tree-2.4.27-10sarge3: * 207_smbfs-chroot-escape.diff [SECURITY] Fix directory traversal vulnerability in smbfs that permits local users to escape chroot restrictions See CVE-2006-1864 * 208_ia64-die_if_kernel-returns.diff [SECURITY][ia64] Fix a potential local DoS on ia64 systems caused by an incorrect 'noreturn' attribute on die_if_kernel() See CVE-2006-0742 * 209_sctp-discard-unexpected-in-closed.diff [SECURITY] Fix remote DoS in SCTP code by discarding unexpected chunks received in CLOSED state instead of calling BUG() See CVE-2006-2271 * 210_ipv4-id-no-increment.diff [SECURITY] Fix vulnerability that allows remote attackers to conduct an Idle Scan attack, bypassing intended protections against such attacks See CVE-2006-1242 * 211_usb-gadget-rndis-bufoverflow.diff [SECURITY] Fix buffer overflow in the USB Gadget RNDIS implementation that allows for a remote DoS attack (kmalloc'd memory corruption) See CVE-2006-1368 * 212_ipv4-sin_zero_clear.diff [SECURITY] Fix local information leak in af_inet code See CVE-2006-1343 * 213_madvise_remove-restrict.diff [SECURITY] Fix vulnerability that allows local users to bypass IPC permissions and replace portions of read-only tmpfs files with zeroes. See CVE-2006-1524 * 214_mcast-ip-route-null-deref.diff [SECURITY] Fix local DoS vulnerability that allows local users to panic a system by requesting a route for a multicast IP See CVE-2006-1525 * 215_sctp-fragment-recurse.diff [SECURITY] Fix remote DoS vulnerability that can lead to infinite recursion when a packet containing two or more DATA fragments is received See CVE-2006-2274 * 216_sctp-fragmented-receive-fix.diff [SECURITY] Fix remote DoS vulnerability that allows IP fragmented COOKIE_ECHO and HEARTBEAT SCTP control chunks to cause a kernel panic See CVE-2006-2272 * 217_amd64-fp-reg-leak.diff [SECURITY][amd64] Fix an information leak that allows a process to see a portion of the floating point state of other processes, possibly exposing sensitive information. See CVE-2006-1056 * 218_do_add_counters-race.diff [SECURITY] Fix race condition in the do_add_counters() function in netfilter that allows local users with CAP_NET_ADMIN capabilities to read kernel memory See CVE-2006-0039 * 219_sctp-hb-ack-overflow.diff [SECURITY] Fix a remote buffer overflow that can result from a badly formatted HB-ACK chunk See CVE-2006-1857 * 220_sctp-param-bound-checks.diff [SECURITY] Fix a bound checking error (remote DoS) in the SCTP parameter checking code See CVE-2006-1858 * 221_netfilter-do_replace-overflow.diff [SECURITY] Fix buffer overflow in netfilter do_replace which can could be triggered by users with CAP_NET_ADMIN rights. See CVE-2006-0038 * 222_binfmt-bad-elf-entry-address.diff [SECURITY][amd64] Fix potential local DoS vulnerability in the binfmt_elf code on em64t processors See CVE-2006-0741 Files: 60abbaf01fa8d0f6ac0992eb08cb965e 1143 devel optional kernel-image-2.4.27-ia64_2.4.27-10sarge3.dsc 650afb6ddf33bd3c55d036c6e163f8d1 54501 devel optional kernel-image-2.4.27-ia64_2.4.27-10sarge3.tar.gz fec3cf9e850845e1339b39eaadbfe411 4688294 devel optional kernel-headers-2.4.27-3_2.4.27-10sarge3_ia64.deb 0ffa2668983b76eb117180f4127f443f 6154 base optional kernel-image-2.4-itanium-smp_2.4.27-10sarge3_ia64.deb 3f041268f31bbc7c13bb41f4b9b254d5 241792 devel optional kernel-headers-2.4.27-3-itanium-smp_2.4.27-10sarge3_ia64.deb 9748928c4403f7d1f708e4f1659ee56b 17020414 base optional kernel-image-2.4.27-3-itanium-smp_2.4.27-10sarge3_ia64.deb 6862682a204020d9be7c3c7a24b58022 6150 base optional kernel-image-2.4-itanium_2.4.27-10sarge3_ia64.deb 525e38de6f834e7112097c26da92b929 240852 devel optional kernel-headers-2.4.27-3-itanium_2.4.27-10sarge3_ia64.deb 5a5fc027a7ed1ea22de65134816ac27e 16670542 base optional kernel-image-2.4.27-3-itanium_2.4.27-10sarge3_ia64.deb 510517c085a54b7f62b21fa549a28254 6188 base optional kernel-image-2.4-mckinley-smp_2.4.27-10sarge3_ia64.deb 1de0bc8938c45fdc763edc8b5be16dbb 241990 devel optional kernel-headers-2.4.27-3-mckinley-smp_2.4.27-10sarge3_ia64.deb c21794a39eae3611d166574bc4d6c946 16980154 base optional kernel-image-2.4.27-3-mckinley-smp_2.4.27-10sarge3_ia64.deb c756f53c98ab21e53f097b2859433591 6178 base optional kernel-image-2.4-mckinley_2.4.27-10sarge3_ia64.deb d711a15e48958eaf0b0cffdb9afbe33b 240416 devel optional kernel-headers-2.4.27-3-mckinley_2.4.27-10sarge3_ia64.deb 6f87ed371e352b5ef736eeb9aea9b1e3 16623356 base optional kernel-image-2.4.27-3-mckinley_2.4.27-10sarge3_ia64.deb 9091687f1ccdd0a95238d4d8bf7a36b4 6372 devel optional kernel-build-2.4.27-3_2.4.27-10sarge3_ia64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (GNU/Linux) iD8DBQFEfGQ2huANDBmkLRkRAvUyAJsG0DEe1egQcguUPZzuIvsRw1PEigCcDYsy x8WMFo0aEdEbqH6tV5acHTs= =J3zC -----END PGP SIGNATURE----- Accepted: kernel-build-2.4.27-3_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-build-2.4.27-3_2.4.27-10sarge3_ia64.deb kernel-headers-2.4.27-3-itanium-smp_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-itanium-smp_2.4.27-10sarge3_ia64.deb kernel-headers-2.4.27-3-itanium_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-itanium_2.4.27-10sarge3_ia64.deb kernel-headers-2.4.27-3-mckinley-smp_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-mckinley-smp_2.4.27-10sarge3_ia64.deb kernel-headers-2.4.27-3-mckinley_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-mckinley_2.4.27-10sarge3_ia64.deb kernel-headers-2.4.27-3_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3_2.4.27-10sarge3_ia64.deb kernel-image-2.4-itanium-smp_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-itanium-smp_2.4.27-10sarge3_ia64.deb kernel-image-2.4-itanium_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-itanium_2.4.27-10sarge3_ia64.deb kernel-image-2.4-mckinley-smp_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-mckinley-smp_2.4.27-10sarge3_ia64.deb kernel-image-2.4-mckinley_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-mckinley_2.4.27-10sarge3_ia64.deb kernel-image-2.4.27-3-itanium-smp_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-itanium-smp_2.4.27-10sarge3_ia64.deb kernel-image-2.4.27-3-itanium_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-itanium_2.4.27-10sarge3_ia64.deb kernel-image-2.4.27-3-mckinley-smp_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-mckinley-smp_2.4.27-10sarge3_ia64.deb kernel-image-2.4.27-3-mckinley_2.4.27-10sarge3_ia64.deb to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-mckinley_2.4.27-10sarge3_ia64.deb kernel-image-2.4.27-ia64_2.4.27-10sarge3.dsc to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-ia64_2.4.27-10sarge3.dsc kernel-image-2.4.27-ia64_2.4.27-10sarge3.tar.gz to pool/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-ia64_2.4.27-10sarge3.tar.gz