[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] [PATCH] Add CVE-2006-5753, CVE-2007-0006, CVE-2007-0772, CVE-2007-0005 and CVE-2007-1000 into patches/

To: xen-devel@xxxxxxxxxxxxxxxxxxx
From: "S.ÃaÄlar Onur" <caglar@xxxxxxxxxxxxx>
Date: Mon, 19 Mar 2007 02:17:35 +0200
Delivery-date: Sun, 18 Mar 2007 17:16:56 -0700
List-id: Xen developer discussion <xen-devel.lists.xensource.com>

Hi;

Xen-3.0.4-testing is based on 2.6.16.33 which affected by following CVE's;

- CVE-2006-5753: fix bad_inode_ops memory corruption
- CVE-2007-0006: Keys: Fix key serial number collision handling
- CVE-2007-0772: Fix a free-wrong-pointer bug in nfsd/acl
- CVE-2007-0005: Fix buffer overflow in Omnikey CardMan 4040 driver
- CVE-2007-1000: [IPV6]: Handle np->opt being NULL in 
ipv6_getsockopt_sticky().

That patch (not attached due to its size) grabs these from 2.6.16-stable tree 
[1];

[1] http://cekirdek.pardus.org.tr/~caglar/cve.patch

Cheers
-- 
S.ÃaÄlar Onur <caglar@xxxxxxxxxxxxx>
http://cekirdek.pardus.org.tr/~caglar/

Linux is like living in a teepee. No Windows, no Gates and an Apache in house!

Attachment: pgpG1yW81WQbP.pgp
Description: PGP signature

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

Prev by Date: [Xen-devel] [PATCH] the address of 'symbols_addresses' will always evaluate as 'true'
Next by Date: [Xen-devel] [PATCH] PV drivers for HVM guests
Previous by thread: [Xen-devel] [PATCH] the address of 'symbols_addresses' will always evaluate as 'true'
Next by thread: [Xen-devel] [PATCH] PV drivers for HVM guests
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.