137626 2006-06-22 11:05 0000 xt_sctp: fix endless loop caused by 0 chunk length (CVE-2006-3085) 2009-07-10 23:15:08 0000 1 1 1 Unclassified Gentoo Security Kernel unspecified All Linux RESOLVED FIXED http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.21 [linux <2.6.16.21] [linux >=2.6.17 <2.6.17.1] P2 normal --- 1 jaervosz@gentoo.org security@gentoo.org agriffis@gentoo.org chrb@gentoo.org gimli@gentoo.org hardened-kernel@gentoo.org johnm@gentoo.org kang@gentoo.org kumba@gentoo.org marineam@gentoo.org jaervosz@gentoo.org 2006-06-22 11:05:17 0000 Fix endless loop in the SCTP match similar to those already fixed in the SCTP conntrack helper (was CVE-2006-1527). Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: Chris Wright <chrisw@sous-sol.org> plasmaroo@gentoo.org 2006-06-24 13:04:49 0000 dsd: Please bump genpatches-2.6.16 to .21. sebastian_ml@gmx.net 2006-06-26 13:40:44 0000 Hi! 2.6.16.22 is already out in the open, allthough I stumbled over it by accident. Is there an easy way to keep track of these updates? They're only on the kernel.org frontpage for the latest series (now 2.6.17). Cheers Sebastian dsd@gentoo.org 2006-07-01 04:51:58 0000 Fixed in gentoo-sources-2.6.16-r11 / genpatches-2.6.16-23 plasmaroo@gentoo.org 2006-07-02 08:44:07 0000 Maintainers please bump to 2.6.16.23/2.7.17.3 preferably or genpatches-2.6.16-13/genpatches-2.6.17-2: ck-sources-2.6.16: marineam ck-sources-2.6.17: marineam hardened-sources-2.6: johnm, hardened mips-sources-2.6.16: `Kumba rsbac-sources-2.6: kang sh-sources-2.6: vapier suspend2-sources-2.6: brix usermode-sources-2.6: dang xbox-sources-2.6: chrb, gimli xen-sources-2.6: chrb, agriffis dang@gentoo.org 2006-07-03 11:04:49 0000 usermode-sources done for 2.6.16. There isn't a 2.6.17 yet, so it will get the newest genpatches when it's added. henrik@brixandersen.dk 2006-07-04 11:05:12 0000 Fixed in sys-kernel/suspend2-sources-2.6.16-r10. sys-kernel/suspend2-sources-2.6.17* is not yet in portage. marineam@gentoo.org 2006-07-09 16:39:28 0000 Fixed in ck-sources-2.6.16_p12-r1 and ck-sources-2.6.17_p1-r1. plasmaroo@gentoo.org 2006-08-07 14:01:40 0000 All fixed, closing.