From: Marc-Christian Petersen <m.c.p@kernel.linux-systeme.com>
To: lkml <linux-kernel@vger.kernel.org>
Subject: Linux 2.2.27-rc1
Date: Tue, 11 Jan 2005 18:14:12 +0100 (CET) [thread overview]
Message-ID: <010501111808260.7120@vobbx.ybpny> (raw)
Hi all,
here goes 2.2.27-rc1. Please let me know if I missed something security
related. It's hard to keep up2date with latest tons of security vulns ;)
Thank you. Have fun.
2.2.27-rc1
----------
o CAN-2004-0497: fixed missing DAC check on sys_chown (Thomas Biege)
o CAN-2004-1016: fixed a buffer overflow vulnerability (Paul Starzetz)
in the "__scm_send" function which handles the sending
of UDP network packets. A wrong validity check of the
cmsghdr structure allowed a local attacker to modify
kernel memory, thus causing an endless loop (DoS) or
possibly even root privilege escalation.
o CAN-2004-1333: fixed integer overflow in the vc_resize (Georgi Guninski)
function allows local users to cause a denial of
service (kernel crash) via a short new screen value,
which leads to a buffer overflow. Make sure VC
resizing fits in s16.
o If the user makes ip_cmsg_send call ip_options_get (Georgi Guninski)
multiple times, we leak kmalloced IP options data.
o fixed moxa serial bound checking issue (Alan Cox)
o menu cleanups (me)
2.2.27-pre2
-----------
o A more correct fix to last mremap (2) bug (Dan Yefimov/Solar Designer)
o renamed imho *bogus* _vsnprintf to vsnprintf (me)
o fixed 'noexec' behaviour (2.4 backport) (me)
from Ulrich Drepper
2.2.27-pre1
-----------
o fixed TCP keepalive bug (Neal Cardwell)
o fixed tcp seq nr wrapping bug (Ulrik De Bie)
o added cciss root translation table (Eduard Bloch)
o VIA KL133/KM133 northbridge: vga console going crazy (Roberto Biancardi)
o speedup 'make dep' (Benoit Poulot-Cazajous)
o disabled MCE only on Pentiums by default (2.4 backport) (Herbert Xu)
(boot with 'mce' if your MCE works as expected)
o skb_realloc_headroom() panics when new headroom is (James Morris)
smaller than existing headroom
o invalid nh.raw use after free (Julian Anastasov)
o fix a local APIC initaliziation ordering bug that (Andrea Arcangeli)
triggers on the P4
o TSC calibration must be dynamic and not a compile (Andrea Arcangeli)
time thing because gettimeofday is dynamic and it
depends on the TSCs to be in sync
o fix deadlock on shutdown in 8139too (Herbert Xu)
o support for ELF executables which use an a.out format (Solar Designer)
interpreter (dynamic linker) moved into a separate
configuration option and disabled by default
o fixed sys_utimes perm check according to sys_utim (Al Viro)
o show us the saved kernel command line (2.4 backport) (me)
o some whitespace cleanups, some coding style cleanups (me)
o fixed some gcc warnings (me)
o add PCI ID for 82820 NIC to eepro100 network driver (me)
o move 'Network device support' near 'Networking options' (me)
--
Kind regards
Marc-Christian Petersen
http://sourceforge.net/projects/wolk
PGP/GnuPG Key: 1024D/569DE2E3DB441A16
Fingerprint: 3469 0CF8 CA7E 0042 7824 080A 569D E2E3 DB44 1A16
Key available at http://pgp.mit.edu. Encrypted e-mail preferred
reply other threads:[~2005-01-11 17:20 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=010501111808260.7120@vobbx.ybpny \
--to=m.c.p@kernel.linux-systeme.com \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).