-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2007-2
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date: 02 Feb 2007
 Last revised: 02 Feb 2007

 Package: kernel

 Summary: Two vulnerabilities discovered in kernel

 More information:
    The kernel package contains the Linux kernel -- the core of the Linux
    operating system.

    Two vulnerabilities have been discovered in kernel netfilter.

 Impact:
    These vulnerabilities may allow users to read kernel memory infomation
    or cause a buffer overflow.

 Affected Products:
    - Turbolinux 8 Server


 <Turbolinux 8 Server>

   Source Packages
   Size: MD5

   kernel-2.4.18-28.src.rpm
     42557285 7f781fec0a18299c861497c19c8b83e8

   Binary Packages
   Size: MD5

   kernel-2.4.18-28.i586.rpm
     14113394 01215d74278be3a489c75e8ef3bef72f
   kernel-BOOT-2.4.18-28.i586.rpm
      7165770 36a0bfd6f6c5a869c072bd69c362e8ef
   kernel-doc-2.4.18-28.i586.rpm
      1457562 f06da07045b698d370eb407d248564d2
   kernel-extramodules-2.4.18-28.i586.rpm
       251105 b86188c167df3f8ee45b0f741829b0fe
   kernel-headers-2.4.18-28.i586.rpm
      1825816 c36f6fe3ae1647702292b9000b3bc57e
   kernel-pcmcia-cs-2.4.18-28.i586.rpm
       332216 e88a52146c8ac13eecd1ef8e048065ab
   kernel-smp-2.4.18-28.i586.rpm
     14622414 b0ce35f5aeeb7006f1fa230e7e1c7b84
   kernel-smp64G-2.4.18-28.i586.rpm
     14625119 72f7e849c9b3354966b14c6d71d91ae5
   kernel-source-2.4.18-28.i586.rpm
     26620748 4836fe7d30528a7589228cd618d89a11


 References:

   [CVE-2006-0038]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0038
   [CVE-2006-0039]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0039

 --------------------------------------------------------------------------
 Revision History
    02 Feb 2007 Initial release
 --------------------------------------------------------------------------

 Copyright(C) 2007 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFFwsTrK0LzjOqIJMwRAne7AJ9bab5MD0KeFoET+8aoS4iken8DCgCfV49a
AYU1tmPcm1SvBJvoKU1t1g0=
=05nM
-----END PGP SIGNATURE-----