This bug was fixed in the package linux - 2.6.35-22.34
--------------- linux (2.6.35-22.34) maverick-proposed; urgency=low
[ John Johansen ]
* SAUCE: Return correct error code for mediated network connections - LP: #647071
[ Upstream Kernel Changes ]
* irda: Correctly clean up self->ias_obj on irda_bind() failure. - CVE-2010-2954 * wireless extensions: fix kernel heap content leak - CVE-2010-2955 * KEYS: Fix RCU no-lock warning in keyctl_session_to_parent() - CVE-2010-2960 * KEYS: Fix bug in keyctl_session_to_parent() if parent has no session keyring - CVE-2010-2960 * ALSA: seq/oss - Fix double-free at error path of snd_seq_oss_open() - CVE-2010-3080 * intel_idle: PCI quirk to prevent Lenovo Ideapad s10-3 boot hang - LP: #634702 * drm/i915: Rephrase pwrite bounds checking to avoid any potential overflow - CVE-2010-2962 * drm/i915: Skip pread/pwrite if size to copy is 0. - CVE-2010-2962 * drm/i915: Sanity check pread/pwrite - CVE-2010-2962 * Fix pktcdvd ioctl dev_minor range check - CVE-2010-3437 * Fix out-of-bounds reading in sctp_asoc_get_hmac() - CVE-2010-3705 * ocfs2: Don't walk off the end of fast symlinks. - CVE-2010-NNN2 -- Leann Ogasawara <email address hidden> Mon, 20 Sep 2010 08:36:53 -0700
This bug was fixed in the package linux - 2.6.35-22.34
---------------
linux (2.6.35-22.34) maverick-proposed; urgency=low
[ John Johansen ]
* SAUCE: Return correct error code for mediated network connections
- LP: #647071
[ Upstream Kernel Changes ]
* irda: Correctly clean up self->ias_obj on irda_bind() failure. session_ to_parent( ) session_ to_parent( ) if parent has no session get_hmac( )
- CVE-2010-2954
* wireless extensions: fix kernel heap content leak
- CVE-2010-2955
* KEYS: Fix RCU no-lock warning in keyctl_
- CVE-2010-2960
* KEYS: Fix bug in keyctl_
keyring
- CVE-2010-2960
* ALSA: seq/oss - Fix double-free at error path of snd_seq_oss_open()
- CVE-2010-3080
* intel_idle: PCI quirk to prevent Lenovo Ideapad s10-3 boot hang
- LP: #634702
* drm/i915: Rephrase pwrite bounds checking to avoid any potential
overflow
- CVE-2010-2962
* drm/i915: Skip pread/pwrite if size to copy is 0.
- CVE-2010-2962
* drm/i915: Sanity check pread/pwrite
- CVE-2010-2962
* Fix pktcdvd ioctl dev_minor range check
- CVE-2010-3437
* Fix out-of-bounds reading in sctp_asoc_
- CVE-2010-3705
* ocfs2: Don't walk off the end of fast symlinks.
- CVE-2010-NNN2
-- Leann Ogasawara <email address hidden> Mon, 20 Sep 2010 08:36:53 -0700