-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Fri, 9 Apr 2004 08:27:51 +0200 Source: kernel-source-2.4.16 Binary: kernel-doc-2.4.16 kernel-source-2.4.16 Architecture: source all Version: 2.4.16-1woody2 Distribution: stable-security Urgency: high Maintainer: Martin Schulze Changed-By: Martin Schulze Description: kernel-doc-2.4.16 - Linux kernel specific documentation for version 2.4.16. kernel-source-2.4.16 - Linux kernel source for version 2.4.16 Changes: kernel-source-2.4.16 (2.4.16-1woody2) stable-security; urgency=high . * Non-maintainer upload by the Security Team * Applied patch by Alan Cox and Thomas Biege to fix local root exploit in the R128 DRI code [drivers/char/drm/r128_state.c, CAN-2004-0003] * Applied additional patch by Ernie Petrides to fix another intance of the same * Applied patch by Petr Vandrovec to fix a possible roothole in ncpfs discovered by Arjan van de Ven [fs/ncpfs/dir.c, CAN-2004-0010] * Applied patch extracted from Solar Designer's Owl patched kernel to fix local privilege escalation discovered by Paul Starzetz (CAN-2004-0077) * Applied patch by Andrea Arcangeli to fix local privilege escalation discovered by Paul Starzetz (CAN-2003-0985) * Added TASK_SIZE check to do_brk() [mm/mmap.c, CAN-2003-0961] * Applied patch by Sebastian Krahmer and Ernie Petrides to fix a local root exploit in iso9660 [fs/isofs/rock.c, CAN-2004-0109] * Applied ptrace bugfix by Alan Cox to fix local root exploit [http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0134.html, CAN-2003-0127] * Applied patch by Theodore Ts'o to fix an information leak in ext3 journal creation [fs/jbd/journal.c, CAN-2004-0177] * Applied patch by Andreas Kies to fix local denial of service in the Sound Blaster driver [drivers/sound/sb_audio.c, CAN-2004-0178] * Removed mkcramfs binary package since it is superseded by 2.4.17 (built from kernel-source-2.4.17), because this would cause a katie reject otherwise. Files: a1ea1561bea3bfeb7b4759a77984b8bf 680 devel optional kernel-source-2.4.16_2.4.16-1woody2.dsc 8e42e72848dc5098b6433d66d5cacffc 29364642 devel optional kernel-source-2.4.16_2.4.16.orig.tar.gz 16b2b377f1e557d40d3a80db9cb8ad54 22668 devel optional kernel-source-2.4.16_2.4.16-1woody2.diff.gz bc7aec1ea3e2fda01fd6d2866421dbdc 1715626 doc optional kernel-doc-2.4.16_2.4.16-1woody2_all.deb 7a26ba7741038abddd79ce3cf331cd29 23808362 devel optional kernel-source-2.4.16_2.4.16-1woody2_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAdl+7W5ql+IAeqTIRArh5AJsFA9uLdQ1Xdz5c9szW7twvJV+ujgCeMJLr Tuc7DvaG2VfkQnOZh3mc+Rc= =qlXh -----END PGP SIGNATURE-----