[kernel-sec-discuss] r612 - active

Martin Pitt mpitt at costa.debian.org
Thu Oct 12 07:11:02 UTC 2006 

Author: mpitt
Date: 2006-10-12 07:10:56 +0000 (Thu, 12 Oct 2006)
New Revision: 612

Modified:
   active/CVE-2006-2935
   active/CVE-2006-3468
   active/CVE-2006-3741
   active/CVE-2006-3745
   active/CVE-2006-4093
   active/CVE-2006-4145
   active/CVE-2006-4535
   active/CVE-2006-4538
   active/CVE-2006-4997
   active/CVE-2006-5173
Log:
update fixed issues of edgy/2.6.17-10.3[01]

Modified: active/CVE-2006-2935
===================================================================
--- active/CVE-2006-2935	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-2935	2006-10-12 07:10:56 UTC (rev 612)
@@ -22,4 +22,4 @@
 2.6.10-hoary-security: released (2.6.10-34.23)
 2.6.12-breezy-security: released (2.6.12-10.37)
 2.6.15-dapper-security: released (2.6.15-26.46)
-2.6.17-edgy: pending
+2.6.17-edgy: released (2.6.17-10.30)

Modified: active/CVE-2006-3468
===================================================================
--- active/CVE-2006-3468	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-3468	2006-10-12 07:10:56 UTC (rev 612)
@@ -26,4 +26,4 @@
 2.6.10-hoary-security: released (2.6.10-34.23)
 2.6.12-breezy-security: released (2.6.12-10.37)
 2.6.15-dapper-security: released (2.6.15-26.47)
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.30)

Modified: active/CVE-2006-3741
===================================================================
--- active/CVE-2006-3741	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-3741	2006-10-12 07:10:56 UTC (rev 612)
@@ -16,4 +16,4 @@
 2.6.10-hoary-security: ignored
 2.6.12-breezy-security: ignored
 2.6.15-dapper-security: ignored
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.31)

Modified: active/CVE-2006-3745
===================================================================
--- active/CVE-2006-3745	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-3745	2006-10-12 07:10:56 UTC (rev 612)
@@ -17,4 +17,4 @@
 2.6.10-hoary-security: released (2.6.10-34.23)
 2.6.12-breezy-security: released (2.6.12-10.37)
 2.6.15-dapper-security: released (2.6.15-26.47)
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.31)

Modified: active/CVE-2006-4093
===================================================================
--- active/CVE-2006-4093	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-4093	2006-10-12 07:10:56 UTC (rev 612)
@@ -16,4 +16,4 @@
 2.6.10-hoary-security: released (2.6.10-34.23)
 2.6.12-breezy-security: released (2.6.12-10.37)
 2.6.15-dapper-security: released (2.6.15-26.47)
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.30)

Modified: active/CVE-2006-4145
===================================================================
--- active/CVE-2006-4145	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-4145	2006-10-12 07:10:56 UTC (rev 612)
@@ -17,4 +17,4 @@
 2.6.10-hoary-security: released (2.6.10-34.23)
 2.6.12-breezy-security: released (2.6.12-10.37)
 2.6.15-dapper-security: released (2.6.15-26.47)
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.30)

Modified: active/CVE-2006-4535
===================================================================
--- active/CVE-2006-4535	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-4535	2006-10-12 07:10:56 UTC (rev 612)
@@ -17,4 +17,4 @@
 2.6.10-hoary-security: released (2.6.10-34.24)
 2.6.12-breezy-security: released (2.6.12-10.40)
 2.6.15-dapper-security: released (2.6.15-27.48)
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.31)

Modified: active/CVE-2006-4538
===================================================================
--- active/CVE-2006-4538	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-4538	2006-10-12 07:10:56 UTC (rev 612)
@@ -21,4 +21,4 @@
 2.6.10-hoary-security: released (2.6.10-34.24)
 2.6.12-breezy-security: released (2.6.12-10.40)
 2.6.15-dapper-security: released (2.6.15-27.48)
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.31)

Modified: active/CVE-2006-4997
===================================================================
--- active/CVE-2006-4997	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-4997	2006-10-12 07:10:56 UTC (rev 612)
@@ -17,4 +17,4 @@
 2.6.10-hoary-security: needed
 2.6.12-breezy-security: needed
 2.6.15-dapper-security: needed
-2.6.17-edgy: needed
+2.6.17-edgy: released (2.6.17-10.31)

Modified: active/CVE-2006-5173
===================================================================
--- active/CVE-2006-5173	2006-10-11 11:17:33 UTC (rev 611)
+++ active/CVE-2006-5173	2006-10-12 07:10:56 UTC (rev 612)
@@ -11,7 +11,10 @@
  exploit this to eventually crash many other running processes.
 Notes: 
  incorrect optimization in some later 2.6.x kernel, reverted
- Local DoS
+ Local DoS.
+
+ Are we sure this affects 2.6.17 and before? The CFI_ADJUST_CFA_OFFSET
+ doesn't seem to be present in these kernels.
 Bugs: 
 upstream: 
 linux-2.6:

More information about the kernel-sec-discuss mailing list