[Monitoring] 4 Debian package update(s) for hexagon.federez.net

apticron report [Tue, 24 Feb 2015 09:48:16 +0100] ======================================================================== apticron has detected that some packages need upgrading on: hexagon.federez.net [ 5.39.82.35 2001:41d0:8:9423::1 5.39.82.35 2001:41d0:8:9423::1 ] The following packages are currently pending an upgrade: linux-headers-3.2.0-4-amd64 3.2.65-1+deb7u2 linux-headers-3.2.0-4-common 3.2.65-1+deb7u2 linux-image-3.2.0-4-amd64 3.2.65-1+deb7u2 linux-libc-dev 3.2.65-1+deb7u2 ======================================================================== Package Details: Lecture des fichiers de modifications (« changelog »)... --- Modifications pour linux (linux-headers-3.2.0-4-amd64 linux-headers-3.2.0-4-common linux-image-3.2.0-4-amd64 linux-libc-dev) --- linux (3.2.65-1+deb7u2) wheezy-security; urgency=medium * splice: Apply generic position and size checks to each write (CVE-2014-7822) * crypto: Fix unprivileged arbitrary module loading (CVE-2013-7421, CVE-2014-9644) - prefix module autoloading with "crypto-" - include crypto- module prefix in template - add missing crypto module aliases * netfilter: conntrack: disable generic tracking for known protocols (CVE-2014-8160) * [amd64] vdso: Fix the vdso address randomization algorithm (CVE-2014-9585) * [x86] KVM: x86 emulator: reject SYSENTER in compatibility mode on AMD guests * [x86] KVM: SYSENTER emulation is broken (CVE-2015-0239) * vfs: move d_rcu from overlapping d_child to overlapping d_alias * aufs: move d_rcu from overlapping d_child to overlapping d_alias * vfs: deal with deadlock in d_walk() (CVE-2014-8559) * vfs: read file_handle only once in handle_to_path (CVE-2015-1420) * ASLR: fix stack randomization on 64-bit systems (CVE-2015-1593) * vfs: Fix vfsmount_lock imbalance in path_init() (regression in 3.2.64) * net: sctp: fix slab corruption from use after free on INIT collisions (CVE-2015-1421) * Fix regressions caused by CVE-2014-8133 fix: - [amd64] tls, ldt: Stop checking lm in LDT_empty - [x86] tls: Interpret an all-zero struct user_desc as "no segment" * eCryptfs: Remove buggy and unnecessary write in file name decode routine (CVE-2014-9683) -- Ben Hutchings <ben(a)decadent.org.uk> Fri, 20 Feb 2015 02:39:08 +0000 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on hexagon.federez.net -- apticron