-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Tue, 5 Dec 2006 02:18:31 -0700 Source: kernel-image-2.6.8-i386 Binary: kernel-image-2.6.8-3-686 kernel-image-2.6.8-3-k7 kernel-headers-2.6.8-3-k7-smp kernel-image-2.6.8-3-686-smp kernel-image-2.6.8-3-k7-smp kernel-headers-2.6.8-3-k7 kernel-headers-2.6.8-3-686 kernel-image-2.6.8-3-386 kernel-headers-2.6.8-3-686-smp kernel-headers-2.6.8-3-386 kernel-headers-2.6.8-3 Architecture: i386 source Version: 2.6.8-16sarge6 Distribution: stable-security Urgency: high Maintainer: Debian kernel team <debian-kernel@lists.debian.org> Changed-By: dann frazier <dannf@debian.org> Description: kernel-headers-2.6.8-3 - Header files related to Linux kernel version 2.6.8 kernel-headers-2.6.8-3-386 - Linux kernel headers 2.6.8 on 386 kernel-headers-2.6.8-3-686 - Linux kernel headers 2.6.8 on PPro/Celeron/PII/PIII/P4 kernel-headers-2.6.8-3-686-smp - Linux kernel headers 2.6.8 on PPro/Celeron/PII/PIII/P4 SMP kernel-headers-2.6.8-3-k7 - Linux kernel headers 2.6.8 on AMD K7 kernel-headers-2.6.8-3-k7-smp - Linux kernel headers 2.6.8 on AMD K7 SMP kernel-image-2.6.8-3-386 - Linux kernel image for version 2.6.8 on 386. kernel-image-2.6.8-3-686 - Linux kernel image for version 2.6.8 on PPro/Celeron/PII/PIII/P4. kernel-image-2.6.8-3-686-smp - Linux kernel image for version 2.6.8 on PPro/Celeron/PII/PIII/P4 kernel-image-2.6.8-3-k7 - Linux kernel image for version 2.6.8 on AMD K7. kernel-image-2.6.8-3-k7-smp - Linux kernel image for version 2.6.8 on AMD K7 SMP. Changes: kernel-image-2.6.8-i386 (2.6.8-16sarge6) stable-security; urgency=high . * Build against kernel-tree-2.6.8-16sarge6: * perfmon-fd-refcnt.dpatch [SECURITY][ia64] Fix file descriptor leak in perfmonctl system call which could be used as a local denial of service attack by depleting the system of file descriptors See CVE-2006-3741 * ia64-sparc-cross-region-mappings.dpatch [SECURITY] Prevent cross-region mappings on ia64 and sparc which could be used in a local DoS attack (system crash) See CVE-2006-4538 * __block_prepare_write-recovery.dpatch [SECURITY] Fix an information leak in __block_prepare_write() See CVE-2006-4813 * atm-clip-freed-skb-deref.dpatch [SECURITY] Avoid dereferencing an already freed skb, preventing a potential remote DoS (system crash) vector See CVE-2006-4997 * ip6_flowlabel-lockup.dpatch [SECURITY] Fix local DoS attack vector (lockups, oopses) in the sequence handling for /proc/net/ip6_flowlabel See CVE-2006-5619 * ppc-alignment-exception-table-check.dpatch [SECURITY][ppc] Avoid potential DoS which can be triggered by some futex ops See CVE-2006-5649 * s390-uaccess-memleak.dpatch [SECURITY][s390] Fix memory leak in copy_from_user by clearing the remaining bytes of the kernel buffer after a fault on the userspace address in copy_from_user() See CVE-2006-5174 * smbfs-honor-mount-opts.dpatch Honor uid, gid and mode mount options for smbfs even when unix extensions are enabled See CVE-2006-5871 * bridge-get_fdb_entries-overflow.dpatch Protect against possible overflow in get_fdb_entries See CVE-2006-5751 Files: 371bc0e772a2de1e60d7c147779ee493 1047 devel optional kernel-image-2.6.8-i386_2.6.8-16sarge6.dsc 12e637c2a82bc35395ec0d5eb09218a7 258046 devel optional kernel-headers-2.6.8-3-k7_2.6.8-16sarge6_i386.deb 2ccf7a2cfcb0b1629a8502bc9ea894bb 15550508 base optional kernel-image-2.6.8-3-686_2.6.8-16sarge6_i386.deb 5bf576e9a0de27e48c54086ab65f6496 92372 devel optional kernel-image-2.6.8-i386_2.6.8-16sarge6.tar.gz 643338f6374486ca34800bd55f66743a 258208 devel optional kernel-headers-2.6.8-3-686_2.6.8-16sarge6_i386.deb 7b8f626d8a9f4461fa4c0514f88d1030 260032 devel optional kernel-headers-2.6.8-3-386_2.6.8-16sarge6_i386.deb 7f56f0182538f628f7ae6a03500b7aa9 255130 devel optional kernel-headers-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb 8413949fb631cba0c41162f9973f448c 15384328 base optional kernel-image-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb 9e25ec9a77d23f6111a096c22133704d 14067514 base optional kernel-image-2.6.8-3-386_2.6.8-16sarge6_i386.deb a4615f36347ba4101f0316d860b0a999 15273574 base optional kernel-image-2.6.8-3-k7_2.6.8-16sarge6_i386.deb ded0d2ddc82edb483927736d0945a26f 15165006 base optional kernel-image-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb e47c34d5ea1c446dcb46018b655e4d5e 255482 devel optional kernel-headers-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb f1541ee9b97a523d3ec3a9718326e599 2781060 devel optional kernel-headers-2.6.8-3_2.6.8-16sarge6_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFeEs2huANDBmkLRkRAgPZAJwKsYM+6xbNBPVH/DP3PadqE91UYgCeOK3i FETOSHnQ7J3o7j2soUf9nVA= =xVzf -----END PGP SIGNATURE----- Accepted: kernel-headers-2.6.8-3-386_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-386_2.6.8-16sarge6_i386.deb kernel-headers-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb kernel-headers-2.6.8-3-686_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-686_2.6.8-16sarge6_i386.deb kernel-headers-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb kernel-headers-2.6.8-3-k7_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-k7_2.6.8-16sarge6_i386.deb kernel-headers-2.6.8-3_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3_2.6.8-16sarge6_i386.deb kernel-image-2.6.8-3-386_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-386_2.6.8-16sarge6_i386.deb kernel-image-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb kernel-image-2.6.8-3-686_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-686_2.6.8-16sarge6_i386.deb kernel-image-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb kernel-image-2.6.8-3-k7_2.6.8-16sarge6_i386.deb to pool/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-k7_2.6.8-16sarge6_i386.deb kernel-image-2.6.8-i386_2.6.8-16sarge6.dsc to pool/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-i386_2.6.8-16sarge6.dsc kernel-image-2.6.8-i386_2.6.8-16sarge6.tar.gz to pool/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-i386_2.6.8-16sarge6.tar.gz