From mboxrd@z Thu Jan 1 00:00:00 1970 From: "=?utf-8?q?S=2E=C3=87a=C4=9Flar?= Onur" Subject: Re: [PATCH] Fix CVE-2007-1320, CVE-2007-1321 , CVE-2007-1322, CVE-2007-1323 and CVE-2007-1366 Date: Tue, 1 May 2007 23:46:02 +0300 Message-ID: <200705012346.05020.caglar@pardus.org.tr> References: Reply-To: caglar@pardus.org.tr Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="===============0383364245==" Return-path: In-Reply-To: List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Mime-version: 1.0 Sender: xen-devel-bounces@lists.xensource.com Errors-To: xen-devel-bounces@lists.xensource.com To: Keir Fraser Cc: xen-devel@lists.xensource.com List-Id: xen-devel@lists.xenproject.org --===============0383364245== Content-Type: multipart/signed; boundary="nextPart1553777.zxKoXy2207"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit --nextPart1553777.zxKoXy2207 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline 01 May 2007 Sal tarihinde, Keir Fraser =C5=9Funlar=C4=B1 yazm=C4=B1=C5=9Ft= =C4=B1:=20 > On 1/5/07 19:56, "S.=C3=87a=C4=9Flar Onur" wrote: > > Hmm i think there are some :) > > > > I have following patches on top of current 3.0.5-testing tree, this > > series contains all released CVE's from 2.6.18 to up until now (linus's > > current git), only CVE-2007-2242 ( IPV6: Disallow RH0 by default.) is > > missing... > > Presumably we'd get most of these by upgrading to linux-2.6.18.8? 8 of them are in 2.6.18.8 others are backported/applied etc, CVE-2005-4352.patch <- solved with 2.6.18.3 CVE-2006-4814.patch <- solved with 2.6.18.8=20 CVE-2006-5619.patch <- solved with 2.6.18.2 CVE-2006-5749.patch <- solved with 2.6.20-rc2 CVE-2006-5751.patch <- solved with 2.6.18.4 CVE-2006-5753.patch <- solved with 2.6.20-rc4 CVE-2006-5757-CVE-2006-6060.patch <- solved in 2.6.18.8 CVE-2006-5823.patch <- solved with 2.6.20-rc1 CVE-2006-6053.patch <- solved with 2.6.20-rc1 CVE-2006-6054.patch <- solved with 2.6.20-rc1 CVE-2006-6056.patch <- solved with 2.6.18.8=20 CVE-2006-6106.patch <- solved with 2.6.18.6 CVE-2006-6333.patch <- solved with 2.6.20 CVE-2007-0005.patch <- solved with 2.6.21-rc3 CVE-2007-0006.patch <- solved with 2.6.21 CVE-2007-0772.patch <- solved with 2.6.18.7 CVE-2007-0958.patch <- solved with 2.6.20-rc7 CVE-2007-1000.patch <- solved with 2.6.21 CVE-2007-1217.patch <- solved with 2.6.20.1 CVE-2007-1388.patch <- solved with 2.6.21 CVE-2007-1497.patch <- solved with 2.6.21 CVE-2007-1592.patch <- solved with 2.6.21 CVE-2007-1861.patch <- solved with 2.6.21.1 CVE-2007-2172.patch <- solved with 2.6.20.6 Cheers =2D-=20 S.=C3=87a=C4=9Flar Onur http://cekirdek.pardus.org.tr/~caglar/ Linux is like living in a teepee. No Windows, no Gates and an Apache in hou= se! --nextPart1553777.zxKoXy2207 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.3 (GNU/Linux) iD8DBQBGN6cMy7E6i0LKo6YRArKlAKCQLy8qdUk7fqcxXoghkd9UW4He0ACdElKg vAYlY6LuyNcyTezBlHuAjA4= =bW0o -----END PGP SIGNATURE----- --nextPart1553777.zxKoXy2207-- --===============0383364245== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel --===============0383364245==--