Comment 33 for bug 164231

Revision history for this message
Jamie Strandboge (jdstrand) wrote :

This bug was fixed in 2.6.20-16.34

---
 linux-source-2.6.20 (2.6.20-16.34) feisty-security; urgency=low

   [Kees Cook]

   * fix NFSv4 client mount regression
     - GIT-SHA 7a9e181ce37e0a862261b1814ee3ef358036dd5e
     - Bug #164231
   * ppc64: fix corrupted sigcontext during FPU stress (CVE-2007-3107)
     - GIT-SHA 7117942afa58a6331cc2abc498541b2784cf79ac

   [Upstream Kernel Changes]

   * minixfs: limit minixfs printks on corrupted dir i_size (CVE-2006-6058)
   * [IPV6]: Do no rely on skb->dst before it is assigned. (CVE-2007-4567)
   * [JFFS2] Fix ACL vs. mode handling. (CVE-2007-4849)
   * [IEEE80211]: avoid integer underflow for runt rx frames (CVE-2007-4997)
   * USB: fix DoS in pwc USB video driver (CVE-2007-5093)
   * Fix debug regression in video/pwc
   * wait_task_stopped: Check p->exit_state instead of TASK_TRACED
     (CVE-2007-5500)
   * fix DLM regression
   * CVE-2008-0001: Use access mode instead of open flags to determine
     needed permissions
   * hrtimers: avoid overflow for large relative timeouts (CVE-2007-5966)
   * isdn: avoid copying overly-long strings (CVE-2007-6063)
   * I4L: fix isdn_ioctl memory overrun vulnerability (CVE-2007-6151)
   * vfs: coredumping fix (CVE-2007-6206)
   * tmpfs: restore missing clear_highpage (CVE-2007-6417)
   * [UBUNTU] fs/dlm: Fix regression introduced with last security fix.