-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 9 May 2007 18:42:58 -0600
Source: user-mode-linux
Binary: user-mode-linux
Architecture: source i386
Version: 2.6.18-1um-2etch2
Distribution: stable-security
Urgency: high
Maintainer: User Mode Linux Maintainers <pkg-uml-pkgs@lists.alioth.debian.org>
Changed-By: dann frazier <dannf@debian.org>
Description:
user-mode-linux - User-mode Linux (kernel)
Changes:
user-mode-linux (2.6.18-1um-2etch2) stable-security; urgency=high
.
* NMU by the Security Team
* Rebuild against linux-source-2.6.18 (2.6.18.dfsg.1-12etch2):
* bugfix/nfnetlink_log-null-deref.patch
[SECURITY] Fix remotely exploitable NULL pointer dereference in
nfulnl_recv_config()
See CVE-2007-1496
* bugfix/nf_conntrack-set-nfctinfo.patch
[SECURITY] Fix incorrect classification of IPv6 fragments as ESTABLISHED,
which allows remote attackers to bypass certain rulesets
See CVE-2007-1497
* bugfix/netlink-infinite-recursion.patch
[SECURITY] Fix infinite recursion bug in netlink
See CVE-2007-1861
* bugfix/nl_fib_lookup-oops.patch
Add fix for oops bug added by previous patch
Files:
6c22cddb8a2d135f4726b13dfd935b2c 865 misc extra user-mode-linux_2.6.18-1um-2etch2.dsc
a0dec50af1f6e002057aa571aacbe380 12938 misc extra user-mode-linux_2.6.18-1um-2etch2.diff.gz
fceb39c53f01b278aa59a20a5f6e266a 25577610 misc extra user-mode-linux_2.6.18-1um-2etch2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGQqyUhuANDBmkLRkRAspJAJ0RvTgfSB2akvPum4bb15vG4GEP9wCfWyeJ
t+I6ec7xzezcC78mKumQLzE=
=xcJ2
-----END PGP SIGNATURE-----
Accepted:
user-mode-linux_2.6.18-1um-2etch2.diff.gz
to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch2.diff.gz
user-mode-linux_2.6.18-1um-2etch2.dsc
to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch2.dsc
user-mode-linux_2.6.18-1um-2etch2_i386.deb
to pool/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch2_i386.deb
