linux-2.6 - security update


This update fixes the CVEs described below. * [CVE-2015-7566](https://security-tracker.debian.org/tracker/CVE-2015-7566) Ralf Spenneberg of OpenSource Security reported that the visor driver crashes when a specially crafted USB device without bulk-out endpoint is detected. * [CVE-2015-8767](https://security-tracker.debian.org/tracker/CVE-2015-8767) An SCTP denial-of-service was discovered which can be triggered by a local attacker during a heartbeat timeout event after the 4-way handshake. * [CVE-2015-8785](https://security-tracker.debian.org/tracker/CVE-2015-8785) It was discovered that local users permitted to write to a file on a FUSE filesystem could cause a denial of service (unkillable loop in the kernel). * [CVE-2016-0723](https://security-tracker.debian.org/tracker/CVE-2016-0723) A use-after-free vulnerability was discovered in the TIOCGETD ioctl. A local attacker could use this flaw for denial-of-service. * [CVE-2016-2069](https://security-tracker.debian.org/tracker/CVE-2016-2069) Andy Lutomirski discovered a race condition in flushing of the TLB when switching tasks. On an SMP system this could possibly lead to a crash, information leak or privilege escalation. For the oldoldstable distribution (squeeze), these problems have been fixed in version 2.6.32-48squeeze19. Additionally, this version includes upstream stable update This is the final update to the linux-2.6 package for squeeze. For the oldstable distribution (wheezy), these problems will be fixed soon. For the stable distribution (jessie), [CVE-2015-7566](https://security-tracker.debian.org/tracker/CVE-2015-7566), [CVE-2015-8767](https://security-tracker.debian.org/tracker/CVE-2015-8767) and [CVE-2016-0723](https://security-tracker.debian.org/tracker/CVE-2016-0723) were fixed in linux version 3.16.7-ckt20-1+deb8u3 and the remaining problems will be fixed soon.

Affected Software

CPE Name Name Version
linux-2.6 2.6.32-48squeeze16
linux-2.6 2.6.32-48
linux-2.6 2.6.32-30
linux-2.6 2.6.32-48squeeze10
linux-2.6 2.6.32-39
linux-2.6 2.6.32-32
linux-2.6 2.6.32-41squeeze2
linux-2.6 2.6.32-41
linux-2.6 2.6.32-43
linux-2.6 2.6.32-48squeeze13
linux-2.6 2.6.32-44
linux-2.6 2.6.32-36
linux-2.6 2.6.32-48squeeze14
linux-2.6 2.6.32-48squeeze4
linux-2.6 2.6.32-38
linux-2.6 2.6.32-47
linux-2.6 2.6.32-48squeeze17
linux-2.6 2.6.32-40
linux-2.6 2.6.32-48squeeze5
linux-2.6 2.6.32-48squeeze11
linux-2.6 2.6.32-46
linux-2.6 2.6.32-48squeeze18
linux-2.6 2.6.32-48squeeze9
linux-2.6 2.6.32-34
linux-2.6 2.6.32-35squeeze1
linux-2.6 2.6.32-45
linux-2.6 2.6.32-35
linux-2.6 2.6.32-48squeeze1
linux-2.6 2.6.32-46squeeze1
linux-2.6 2.6.32-39squeeze1
linux-2.6 2.6.32-48squeeze3
linux-2.6 2.6.32-35~bpo50+1
linux-2.6 2.6.32-48squeeze6
linux-2.6 2.6.32-34squeeze1
linux-2.6 2.6.32-35squeeze2
linux-2.6 2.6.32-31~bpo50+1
linux-2.6 2.6.32-31
linux-2.6 2.6.32-37
linux-2.6 2.6.32-33
linux-2.6 2.6.32-48squeeze7
linux-2.6 2.6.32-48squeeze8
linux-2.6 2.6.32-48squeeze12
linux-2.6 2.6.32-30+m68k.5
linux-2.6 2.6.32-42