Comment 3 for bug 1392820

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux-ec2 - 2.6.32-373.90

---------------
linux-ec2 (2.6.32-373.90) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-69.136
  * Release Tracking Bug
    - LP: #1395971

  [ Ubuntu: 2.6.32-69.136 ]

  * net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks
    - LP: #1386367
    - CVE-2014-3673
  * net: sctp: fix panic on duplicate ASCONF chunks
    - LP: #1386392
    - CVE-2014-3687
  * net: sctp: fix remote memory pressure from excessive queueing
    - LP: #1386393
    - CVE-2014-3688
  * mac80211: fix fragmentation code, particularly for encryption
    - LP: #1392013
    - CVE-2014-8709
  * ttusb-dec: buffer overflow in ioctl
    - LP: #1395187
    - CVE-2014-8884
  * net: sctp: fix NULL pointer dereference in af->from_addr_param on
    malformed packet
    - LP: #1392820
    - CVE-2014-7841
 -- Stefan Bader <email address hidden> Tue, 25 Nov 2014 11:22:25 +0100