UbuntuUpdates.org


AllMaverickLucidKarmicJauntyIntrepidHardyAll PPAs
Recent Search QueriesSearch Statistics

Package linux

Name: linux

Description:

This package is just an umbrella for a group of other packages, it has no description. Please select a package in "Packages in group" for more information.
Latest version: 2.6.24-28.77
Ubuntu release: hardy (8.04)
Level: updates
Repository: universe

All versions of linux in Hardy

updates (this page) base security proposed
2.6.24-28.77 2.6.24-16.30 2.6.24-28.77 2.6.24-28.71

See all versions of linux in all Ubuntu releases and repositories.

Links

Packages in group

linux-image-2.6.24-18-openvz linux-image-2.6.24-18-rt linux-image-2.6.24-18-xen linux-image-2.6.24-19-openvz linux-image-2.6.24-19-rt linux-image-2.6.24-19-xen linux-image-2.6.24-21-openvz linux-image-2.6.24-21-rt linux-image-2.6.24-21-xen linux-image-2.6.24-22-openvz linux-image-2.6.24-22-rt linux-image-2.6.24-22-xen linux-image-2.6.24-23-openvz linux-image-2.6.24-23-rt linux-image-2.6.24-23-xen linux-image-2.6.24-24-openvz linux-image-2.6.24-24-rt linux-image-2.6.24-24-xen linux-image-2.6.24-25-openvz linux-image-2.6.24-25-rt linux-image-2.6.24-25-xen linux-image-2.6.24-26-openvz linux-image-2.6.24-26-rt linux-image-2.6.24-26-xen linux-image-2.6.24-27-openvz linux-image-2.6.24-27-rt linux-image-2.6.24-27-xen linux-image-2.6.24-28-openvz linux-image-2.6.24-28-rt linux-image-2.6.24-28-xen

Change Log

Version: 2.6.24-28.77 2010-08-26 21:04:43 UTC 
linux (2.6.24-28.77) hardy-security; urgency=low

  [Stefan Bader]

  * mm: Use helper to find real vma with stack guard page
    - LP: #620994
    - CVE-2010-2240
  * mm: Do not assume ENOMEM when looking at a split stack vma
    - LP: #620994
    - CVE-2010-2240

 -- Stefan Bader   Wed, 25 Aug 2010 12:54:28 +0000
Source diff to previous version
CVE-2010-2240 mm: keep a guard page below a grow-down stack segment
620994 linux: "linux 2.6.24-28.75 breaks xen flavours (xen kernel bug: 'kernel BUG at /build/buildd/linux-2.6.24/debian/build/custom-source-xen/mm/memory.c:2

Version: 2.6.24-28.75 2010-08-20 00:02:39 UTC 
linux (2.6.24-28.75) hardy-security; urgency=low

  [Upstream Kernel Changes]

  * mm: keep a guard page below a grow-down stack segment
    - CVE-2010-2240
  * mm: fix missing page table unmap for stack guard page failure case
    - CVE-2010-2240
  * mm: fix page table unmap for stack guard page properly
    - CVE-2010-2240
  * mm: fix up some user-visible effects of the stack guard page
    - CVE-2010-2240
  * x86: don't send SIGBUS for kernel page faults
    - CVE-2010-2240
  * mm: pass correct mm when growing stack
    - CVE-2010-2240
  * OPENVZ: Fixup patches to memory.c and mlock.c
    - CVE-2010-2240

 -- Stefan Bader   Wed, 18 Aug 2010 11:27:41 +0200
Source diff to previous version
CVE-2010-2240 mm: keep a guard page below a grow-down stack segment

Version: 2.6.24-28.73 2010-08-05 01:01:49 UTC 
linux (2.6.24-28.73) hardy-security; urgency=low

  [Upstream Kernel Changes]

  * sctp: Fix skb_over_panic resulting from multiple invalid parameter
    errors (CVE-2010-1173) (v4)
    - CVE-2010-1173
  * sctp: fix append error cause to ERROR chunk correctly
    - CVE-2010-1173
  * GFS2: Fix writing to non-page aligned gfs2_quota structures
    - CVE-2010-1436
  * KEYS: find_keyring_by_name() can gain access to a freed keyring
    - CVE-2010-1437
  * sparc64: Fix sun4u execute bit check in TSB I-TLB load.
    - CVE-2010-1451
  * GFS2: Fix permissions checking for setflags ioctl()
    - CVE-2010-1641
  * nfsd: fix vm overcommit crash
    - CVE-2010-1643
  * nfsd: fix vm overcommit crash fix #2
    - CVE-2008-7256
  * ecryptfs: Bugfix for error related to ecryptfs_hash_buckets
    - CVE-2010-2492

 -- Stefan Bader   Tue, 20 Jul 2010 18:21:57 +0200
Source diff to previous version
CVE-2010-1173 The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attacker
CVE-2010-1436 gfs2 in the Linux kernel 2.6.18, and possibly other versions, does not properly handle when the gfs2_quota struct occupies two separate pages, which a
CVE-2010-1437 Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause
CVE-2010-1451 The TSB I-TLB load implementation in arch/sparc/kernel/tsb.S in the Linux kernel before 2.6.33 on the SPARC platform does not properly obtain the valu
CVE-2010-1641 The do_gfs2_set_flags function in fs/gfs2/file.c in the Linux kernel before 2.6.34-git10 does not verify the ownership of a file, which allows local u
CVE-2010-1643 mm/shmem.c in the Linux kernel before 2.6.28-rc3, when strict overcommit is enabled, does not properly handle the export of shmemfs objects by knfsd,
CVE-2008-7256 mm/shmem.c in the Linux kernel before 2.6.28-rc8, when strict overcommit is enabled and CONFIG_SECURITY is disabled, does not properly handle the expo
CVE-2010-2492 RESERVED

Version: 2.6.24-28.71 2010-07-08 09:04:05 UTC 
linux (2.6.24-28.71) hardy-proposed; urgency=low

  [Upstream Kernel Changes]

  * tcp FRTO: Fix fallback to conventional recovery
    - LP: #567394
  * tcp FRTO: SACK variant is errorneously used with NewReno
    - LP: #567394
  * tcp FRTO: work-around inorder receivers
    - LP: #567394

 -- Stefan Bader   Wed, 09 Jun 2010 11:15:27 +0200
Source diff to previous version
567394 linux: "TCP stack bug related to F-RTO"

Version: 2.6.24-28.70 2010-06-03 03:01:28 UTC 
linux (2.6.24-28.70) hardy-security; urgency=low

  [Stefan Bader]

  * OPENVZ: Fix patch failure on fs/namei.c
    - CVE-2010-1088
  * KVM: x86: Completely backport get_cpl functionality
    - CVE-2010-0298
    - CVE-2010-0306

  [Upstream Kernel Changes]

  * virtio: finer-grained features for virtio_net
    - CVE-2010-0741
  * virtio: explicit advertisement of driver features
    - CVE-2010-0741
  * USB: usbfs: properly clean up the as structure on error paths
    - CVE-2010-1083
  * Bluetooth: Fix potential bad memory access with sysfs files
    - CVE-2010-1084
  * dvb-core: Fix DoS bug in ULE decapsulation code that can be triggered
    by an invalid Payload Pointer
    - CVE-2010-1086
  * ipv6: Fix OOPS in ip6_dst_lookup_tail().
    - CVE-2010-0437
  * GFS2: Skip check for mandatory locks when unlocking
    - CVE-2010-0727
  * tipc: Fix oops on send prior to entering networked mode (v3)
    - CVE-2010-1187
  * idr: fix a critical misallocation bug, take#2
    - LP: #485556
  * tty: release_one_tty() forgets to put pids
    - CVE-2010-1162
  * fix LOOKUP_FOLLOW on automount "symlinks"
    - CVE-2010-1088
  * NFS: Fix an Oops when truncating a file
    - CVE-2010-1087
  * r8169: Fix receive buffer length when MTU is between 1515 and 1536
    - CVE-2009-4537
  * r8169: offical fix for CVE-2009-4537 (overlength frame DMAs)
    - CVE-2009-4537
  * KVM: introduce kvm_read_guest_virt, kvm_write_guest_virt
    - CVE-2010-0298
    - CVE-2010-0306
  * KVM: remove the vmap usage
    - CVE-2010-0298
    - CVE-2010-0306
  * KVM: x86 emulator: Check CPL level during privilege instruction
    emulation
    - CVE-2010-0298
    - CVE-2010-0306
  * KVM: x86 emulator: Add Virtual-8086 mode of emulation
    - CVE-2010-0298
    - CVE-2010-0306
  * KVM: x86 emulator: fix memory access during x86 emulation
    - CVE-2010-0298
    - CVE-2010-0306
  * KVM: x86 emulator: Check IOPL level during io instruction emulation
    - CVE-2010-0298
    - CVE-2010-0306
  * KVM: VMX: Use macros instead of hex value on cr0 initialization
    - CVE-2010-0298
    - CVE-2010-0306
  * KVM: SVM: Reset cr0 properly on vcpu reset
    - CVE-2010-0298
    - CVE-2010-0306

 -- Stefan Bader   Tue, 25 May 2010 12:14:20 +0000
485556 linux: "inotify oops with wd == 4096"
CVE-2010-1088 fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount "symlinks," which allows attackers to have an unknown impact, re
CVE-2010-0298 The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) in determining the memory access available to
CVE-2010-0306 The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing (SMP), does not use the Current Privilege Level (CPL) and I/O Pri
CVE-2010-0741 The virtio_net_bad_features function in hw/virtio-net.c in the virtio-net driver in the Linux kernel before 2.6.26, when used on a guest OS in conjunc
CVE-2010-1083 The processcompl_compat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the tra
CVE-2010-1084 Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service (memory corruption) via a large
CVE-2010-1086 The ULE decapsulation functionality in drivers/media/dvb/dvb-core/dvb_net.c in dvb-core in Linux kernel 2.6.33 and earlier allows attackers to cause a
CVE-2010-0437 The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving a
CVE-2010-0727 The gfs2_lock function in the Linux kernel before 2.6.34-rc1-next-20100312, and the gfs_lock function in the Linux kernel on Red Hat Enterprise Linux
CVE-2010-1187 The Transparent Inter-Process Communication (TIPC) functionality in Linux kernel 2.6.16-rc1 through 2.6.33, and possibly other versions, allows local
CVE-2010-1162 The release_one_tty function in drivers/char/tty_io.c in the Linux kernel before 2.6.34-rc4 omits certain required calls to the put_pid function, whic
CVE-2010-1087 The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) vi
CVE-2009-4537 drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds th


About   -   Changelog   -   Send Feedback