[kernel-sec-discuss] r593 - dsa-texts
Dann Frazier
dannf at costa.debian.org
Sat Sep 23 00:55:46 UTC 2006
Author: dannf
Date: 2006-09-23 00:55:45 +0000 (Sat, 23 Sep 2006)
New Revision: 593
Modified:
dsa-texts/2.6.8-sarge5
Log:
should be ready to go
Modified: dsa-texts/2.6.8-sarge5
===================================================================
--- dsa-texts/2.6.8-sarge5 2006-09-21 05:26:34 UTC (rev 592)
+++ dsa-texts/2.6.8-sarge5 2006-09-23 00:55:45 UTC (rev 593)
@@ -1,6 +1,6 @@
--------------------------------------------------------------------------
Debian Security Advisory DSA XXX-1 security at debian.org
-http://www.debian.org/security/ Dann Frazier, Troy Heber
+http://www.debian.org/security/ Dann Frazier
XXXXX 8th, 2006 http://www.debian.org/security/faq
--------------------------------------------------------------------------
@@ -89,19 +89,26 @@
CVE-2006-3745
- NEED INFO
+ Wei Wang discovered a vulnerability in the SCTP subsystem that can be
+ exploited for local privilege escalation.
+
CVE-2006-4535
- NEED INFO
+ David Miller reported a problem with the fix for CVE-2006-3745 that allows
+ local users to crash the system using via an SCTP socket with a certain
+ SO_LINGER value.
CVE-2006-4093
- NEED INFO
+ Olof Johansson reported a vulnerability on PPC970 systems that allows
+ local users to hang a machine related to the HID0 attention enable at
+ boot time.
CVE-2006-4145
- NEED INFO
+ Colin discovered a bug in the UDF filesystem that allows local users to
+ hang a system when truncating files.
The following matrix explains which kernel version for which architecture
fix the problems mentioned above:
More information about the kernel-sec-discuss
mailing list