[kernel-sec-discuss] r581 - active
Dann Frazier
dannf at costa.debian.org
Tue Sep 5 19:34:56 UTC 2006
Author: dannf
Date: 2006-09-05 19:34:56 +0000 (Tue, 05 Sep 2006)
New Revision: 581
Added:
active/CVE-2006-4535
active/CVE-2006-4538
Log:
a couple new issues
Copied: active/CVE-2006-4535 (from rev 580, active/00boilerplate)
===================================================================
--- active/CVE-2006-4535 (rev 0)
+++ active/CVE-2006-4535 2006-09-05 19:34:56 UTC (rev 581)
@@ -0,0 +1,16 @@
+Candidate: CVE-2006-4535
+References:
+Description:
+ fix for CVE-2006-3745 sctp fix from dave miller
+Ubuntu-Description:
+Notes:
+Bugs:
+upstream:
+linux-2.6.16:
+linux-2.6:
+2.6.8-sarge-security:
+2.4.27-sarge-security:
+2.6.10-hoary-security:
+2.6.12-breezy-security:
+2.6.15-dapper-security:
+2.6.17-edgy:
Copied: active/CVE-2006-4538 (from rev 580, active/00boilerplate)
===================================================================
--- active/CVE-2006-4538 (rev 0)
+++ active/CVE-2006-4538 2006-09-05 19:34:56 UTC (rev 581)
@@ -0,0 +1,20 @@
+Candidate: CVE-2006-4538
+References:
+ http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git;a=commit;h=8833ebaa3f4325820fe3338ccf6fae04f6669254
+Description:
+ Linux kernel 2.6.17 and earlier, when running on IA64 or SPARC
+ platforms, allows local users to cause a denial of service (crash) via
+ a malformed ELF file that triggers memory maps that cross region
+ boundaries.
+Ubuntu-Description:
+Notes:
+Bugs:
+upstream:
+linux-2.6.16:
+linux-2.6:
+2.6.8-sarge-security:
+2.4.27-sarge-security:
+2.6.10-hoary-security:
+2.6.12-breezy-security:
+2.6.15-dapper-security:
+2.6.17-edgy:
More information about the kernel-sec-discuss
mailing list