-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Tue, 18 Jan 2005 17:15:51 +0900 Source: kernel-source-2.4.27 Binary: kernel-tree-2.4.27 kernel-source-2.4.27 kernel-patch-debian-2.4.27 kernel-doc-2.4.27 Architecture: source all Version: 2.4.27-8 Distribution: unstable Urgency: high Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org> Changed-By: Simon Horman <horms@debian.org> Description: kernel-doc-2.4.27 - Linux kernel specific documentation for version 2.4.27 kernel-patch-debian-2.4.27 - Debian patches to Linux 2.4.27 kernel-source-2.4.27 - Linux kernel source for version 2.4.27 with Debian patches kernel-tree-2.4.27 - Linux kernel tree for building prepackaged Debian kernel images Closes: 285521 285563 288046 288272 288279 288712 289202 289517 289682 290013 290039 Changes: kernel-source-2.4.27 (2.4.27-8) unstable; urgency=high . * add dh_fixperms to the build targets to kernel-patch-debian-2.4.27 to ensure that the permissions of the files in this package are sensible. (closes: Bug#288279) (Simon Horman) * Turn a make conditional into a runtime conditional to allow debian/rules prune to work. (closes: #289682) (Joshua Kwan) . Patches applied: . * 121_drm-locking-checks-1.diff, 121_drm-locking-checks-2.diff: [SECURITY] Fix insufficient locking checks in DRM code; CAN-2004-1056 (Fabio M. Di Nitto, Dann Frazier, Simon Horman). (closes: Bug#285563) * 122_sec_brk-locked.diff [SECURITY] Fix vulnerability in the ELF loader code allowing local attacker to execute code as root; CAN-2004-1235. This is better known as the "uselib() bug". (closes: #289202) (Maximilian Attems) * 123_nfs_verify_eacces.diff Return -EACCES instead of -ESTALE to fix some NFS data loss bugs, already fixed in 2.6 but not in 2.4. (closes: #288046) (Joshua Kwan) * 124_random_poolsize_overflow.diff [SECURITY] Fix integer overflow in random poolsize sysctl. (Simon Horman) * 125_moxa_bound_checking.diff [SECURITY] Fix bounds checking in moxa serial driver. (Simon Horman) * 126_rlimit_memlock_dos.diff [SECURITY] Fix RLIMIT_MEMLOCK local DoS (Simon Horman) * 127_fs_coda_coverty.diff [SECURITY] Untrusted user data in kernel. (Maxmilian Attems) * 128_net_fose_coverty.diff [SECURITY] Fix Coverity reported lack of bounds checking rose_rt_ioctl. (Maximilian Attems) * 129_net_sdla_coverty.diff [SECURITY] Fix sdla_xfer lack of bounds checking, reported by Coverity. (Maximilian Attems) * 130_fs_xfs_coverty.diff [SECURITY] Fix xfs_attrmulti_by_handle lack of bounds checking, reported by Coverity. (Maximilian Attems) * 131_expand_stack_race.diff [SECURITY] Fix expand_stack race in mm.h; see CAN-2005-0001. * 127_acpi_off.diff Do not do acpi_early_init() if acpi=off is in effect. (closes: #290039, #290013, #289517, #288712, #285521, #288272) (Simon Horman) * 133_strncpy_zero_pad.diff [SECURITY] Make sure strncpy null terminates strings. (CAN-2003-0465) Fix for s390x, ppc64 and s390. mips and alpha are still unfixed. N.B. This bug appears to be minor at best http://marc.theaimsgroup.com/?l=linux-kernel&m=105796021120436&w=2 (See: #280492) (Simon Horman) Files: 97a63b4b0cc25c21e5609fe7c2897caa 886 devel optional kernel-source-2.4.27_2.4.27-8.dsc 8deef7c6d5f1ebd677253e4a3d326c4a 783407 devel optional kernel-source-2.4.27_2.4.27-8.diff.gz ab7999be4aeddae6e37ccaf2f397459f 581928 devel optional kernel-patch-debian-2.4.27_2.4.27-8_all.deb 2f63270d257f724340f0a4f410fcb373 3576122 doc optional kernel-doc-2.4.27_2.4.27-8_all.deb 0152552abefd29eb1c39d88e620fb8a8 31048618 devel optional kernel-source-2.4.27_2.4.27-8_all.deb d6f3103bc5394fefccdcbe070aefcd36 21286 devel optional kernel-tree-2.4.27_2.4.27-8_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQFB724Rdu+M6Iexz7URAjijAJ4hi05/cAN+LPp98oTvzZhgsYkTqQCePK3u ev8Lo7eV6856leEC/UAWtj4= =NBFC -----END PGP SIGNATURE----- Accepted: kernel-doc-2.4.27_2.4.27-8_all.deb to pool/main/k/kernel-source-2.4.27/kernel-doc-2.4.27_2.4.27-8_all.deb kernel-patch-debian-2.4.27_2.4.27-8_all.deb to pool/main/k/kernel-source-2.4.27/kernel-patch-debian-2.4.27_2.4.27-8_all.deb kernel-source-2.4.27_2.4.27-8.diff.gz to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.diff.gz kernel-source-2.4.27_2.4.27-8.dsc to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8.dsc kernel-source-2.4.27_2.4.27-8_all.deb to pool/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-8_all.deb kernel-tree-2.4.27_2.4.27-8_all.deb to pool/main/k/kernel-source-2.4.27/kernel-tree-2.4.27_2.4.27-8_all.deb -- To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org