linux-toradex.git, branch v2.6.16.27 Linux kernel for Apalis and Colibri modules Linux 2.6.16.27 2006-07-17T13:58:58+00:00 Greg Kroah-Hartman gregkh@suse.de 2006-07-17T13:58:58+00:00 659eadfc20751c1e0784f4910d194fcd836b86db 






[PATCH] USB serial ftdi_sio: Prevent userspace DoS (CVE-2006-2936)
2006-07-17T13:54:20+00:00

Ian Abbott
abbotti@mev.co.uk

2006-06-26T11:59:17+00:00

b6c9e34e0aca7f2ba1c106d6805f1c18a99dffc8

This patch limits the amount of outstanding 'write' data that can be
queued up for the ftdi_sio driver, to prevent userspace DoS attacks (or
simple accidents) that use up all the system memory by writing lots of
data to the serial port.

Signed-off-by: Ian Abbott <abbotti@mev.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>





This patch limits the amount of outstanding 'write' data that can be
queued up for the ftdi_sio driver, to prevent userspace DoS attacks (or
simple accidents) that use up all the system memory by writing lots of
data to the serial port.

Signed-off-by: Ian Abbott <abbotti@mev.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>







[PATCH] IPV6 ADDRCONF: Fix default source address selection without CONFIG_IPV6_PRIVACY
2006-07-17T13:54:20+00:00

YOSHIFUJI Hideaki
yoshfuji@linux-ipv6.org

2006-06-22T08:42:13+00:00

8ac7545d688e3f83a02549b5281620cfeed0e281

We need to update hiscore.rule even if we don't enable CONFIG_IPV6_PRIVACY,
because we have more less significant rule; longest match.

Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>





We need to update hiscore.rule even if we don't enable CONFIG_IPV6_PRIVACY,
because we have more less significant rule; longest match.

Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>







[PATCH] IPV6: Fix source address selection.
2006-07-17T13:54:20+00:00

$,1 aukasz Stelmach
stlman@poczta.fm

2006-06-22T08:39:05+00:00

1d3688b61337c13317492af7a50424303294584d

Two additional labels (RFC 3484, sec. 10.3) for IPv6 addreses
are defined to make a distinction between global unicast
addresses and Unique Local Addresses (fc00::/7, RFC 4193) and
Teredo (2001::/32, RFC 4380). It is necessary to avoid attempts
of connection that would either fail (eg. fec0:: to 2001:feed::)
or be sub-optimal (2001:0:: to 2001:feed::).

Signed-off-by: $,1 aukasz Stelmach <stlman@poczta.fm>
Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>





Two additional labels (RFC 3484, sec. 10.3) for IPv6 addreses
are defined to make a distinction between global unicast
addresses and Unique Local Addresses (fc00::/7, RFC 4193) and
Teredo (2001::/32, RFC 4380). It is necessary to avoid attempts
of connection that would either fail (eg. fec0:: to 2001:feed::)
or be sub-optimal (2001:0:: to 2001:feed::).

Signed-off-by: $,1 aukasz Stelmach <stlman@poczta.fm>
Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>







Linux 2.6.16.25
2006-07-15T19:45:58+00:00

Greg Kroah-Hartman
gregkh@suse.de

2006-07-15T19:45:58+00:00

e7291d7695d3271fe6062039a21e1ab276390554












[PATCH] Relax /proc fix a bit
2006-07-15T19:45:13+00:00

Linus Torvalds
torvalds@osdl.org

2006-07-15T05:59:19+00:00

17fe0b2d3142f81b09ece55aa5e290cdc49b4a22

Relax /proc fix a bit

Clearign all of i_mode was a bit draconian. We only really care about
S_ISUID/ISGID, after all.

Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>





Relax /proc fix a bit

Clearign all of i_mode was a bit draconian. We only really care about
S_ISUID/ISGID, after all.

Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>







Linux 2.6.16.25
2006-07-15T02:33:41+00:00

Greg Kroah-Hartman
gregkh@suse.de

2006-07-15T02:33:41+00:00

f7a3975e687412bc400352e0eeaf9a8521de4e10












[PATCH] Fix nasty /proc vulnerability (CVE-2006-3626)
2006-07-15T02:30:51+00:00

Linus Torvalds
torvalds@osdl.org

2006-07-14T23:59:02+00:00

d8a2707576c2d12dd79d797a9bff3b10b3d182f7

Fix nasty /proc vulnerability

We have a bad interaction with both the kernel and user space being able
to change some of the /proc file status.  This fixes the most obvious
part of it, but I expect we'll also make it harder for users to modify
even their "own" files in /proc.

Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>





Fix nasty /proc vulnerability

We have a bad interaction with both the kernel and user space being able
to change some of the /proc file status.  This fixes the most obvious
part of it, but I expect we'll also make it harder for users to modify
even their "own" files in /proc.

Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>







Linux 2.6.16.24
2006-07-06T20:06:01+00:00

Greg Kroah-Hartman
gregkh@suse.de

2006-07-06T20:06:01+00:00

407972755b44d0a18647dab1f1e62df80b6638d0












fix prctl privilege escalation and suid_dumpable (CVE-2006-2451)
2006-07-06T20:05:42+00:00

Greg Kroah-Hartman
gregkh@suse.de

2006-07-06T20:05:42+00:00

9e4e45f19bdd41b4091e5fe556f816f4046c7598

Based on a patch from Ernie Petrides

During security research, Red Hat discovered a behavioral flaw in core
dump handling. A local user could create a program that would cause a
core file to be dumped into a directory they would not normally have
permissions to write to. This could lead to a denial of service (disk
consumption), or allow the local user to gain root privileges.

Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>





Based on a patch from Ernie Petrides

During security research, Red Hat discovered a behavioral flaw in core
dump handling. A local user could create a program that would cause a
core file to be dumped into a directory they would not normally have
permissions to write to. This could lead to a denial of service (disk
consumption), or allow the local user to gain root privileges.

Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>