Willy, here are the security patches I've recently applied to Debian's
2.6.32 branch, aside from "pipe: iovec: Fix memory corruption when
retrying atomic copy as non-atomic" which I sent earlier.
All except the last one ("udp: fix behavior of wrong checksums") have
already been released without reported regressions. The mapping to CVE
IDs is:
* TTY: drop driver reference in tty_open fail path (CVE-2011-5321)
* netlink: fix possible spoofing from non-root processes (CVE-2012-6689)
* eCryptfs: Remove buggy and unnecessary write in file name decode routine
(CVE-2014-9683)
* HID: fix a couple of off-by-ones (CVE-2014-3184)
* udf: Verify i_size when loading inode (CVE-2014-9728, CVE-2014-9729)
* udf: Verify symlink size before loading it (CVE-2014-9728)
* udf: Treat symlink component of type 2 as / (dependency of following fix)
* udf: Check path length when reading symlink (CVE-2014-9731)
* udf: Check component length before reading it
(CVE-2014-9728, CVE-2014-9730)
* udf: Remove repeated loads blocksize (dependency of following fix)
* udf: Check length of extended attributes and allocation descriptors
(CVE-2015-4167)
* udp: fix behavior of wrong checksums (CVE-2015-5364)
Ben.
--
Ben Hutchings
Every program is either trivial or else contains at least one bug
Attachment:
security-2.6.32.mbox
Description: application/mbox
Attachment:
signature.asc
Description: This is a digitally signed message part