Fixed in vanilla 2.6.11.6 http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.6 Michal Zalewski <lcamtuf@dione.ids.pl> discovers range checking flaws in iso9660 filesystem. CAN-2005-0815 is assigned to this issue.
mips-sources fixed.
Fixed in gentoo-sources-2.6.11-r6
Fixed in usermode-sources-2.6.11
Created attachment 58067 [details, diff] CAN-2005-0815 fix patch from bk-commits-head Also at http://pearls.tuxedo-es.org/gentoo/kernel/CAN-2005-0815.patch. I'm going to add it to the patchset for hardened-sources and update the ebuild, then upload to: http://pearls.tuxedo-es.org/gentoo/hardened/kernel/ Come on tocharian :) Cheers, Lorenzo.
Updated hardened-sources patchset to fix CAN-2005-0815: http://pearls.tuxedo-es.org/gentoo/hardened/kernel/ Cheers, Lorenzo.
Fixed in ck-sources-2.6.11-r7
This also affects the 2.4 series. From solar : grsec-sources-2.4.30 is in the tree as ~arch. Note for other bumpers of 2.4.x series. CAN-2004-1056.patch and linux-2.4.28-random-poolsize.patch have never been applied to mainline.
kang: rsbac-sources-2.4 needs fix.
sorry i didnt catch that bug for some reason:/ but it was fixed by then anyway. now too :)
All fixed, closing bug.