Changelog
linux-2.6 (2.6.32-48squeeze4) squeeze-security; urgency=high
[ Ian Campbell ]
* Fix regression in "xen: netback: shutdown the ring if it contains garbage
(CVE-2013-0216)" (Closes: #701744)
[ Moritz Muehlenhoff ]
* drivers/cdrom/cdrom.c: use kzalloc() for failing hardware (CVE-2013-2164)
* ipv6: ip6_sk_dst_check() must not assume ipv6 dst (CVE-2013-2232)
* af_key: fix info leaks in notify messages (CVE-2013-2234)
* af_key: initialize satype in key_notify_policy_flush() (CVE-2013-2237)
* block: do not pass disk names as format strings (CVE-2013-2851)
* b43: stop format string leaking into error msgs (CVE-2013-2852)
* sctp: Use correct sideffect command in duplicate cookie handling
(CVE-2013-2206)
* kernel/signal.c: stop info leak via the tkill and the tgkill syscalls
(CVE-2013-2141)
* HID: validate HID report id size (CVE-2013-2888)
* HID: check for NULL field when setting values
* Information leak in openvz quota implementation (CVE-2013-2239)
[ dann frazier ]
* HID: pantherlord: validate output report details (CVE-2013-2892)
-- dann frazier <email address hidden> Mon, 23 Sep 2013 12:36:26 -0600