[kernel-sec-discuss] r767 - active retired

[Moritz Muehlenhoff]

Author: jmm
Date: 2007-04-29 20:48:51 +0000 (Sun, 29 Apr 2007)
New Revision: 767

Added:
   retired/CVE-2007-0772
Removed:
   active/CVE-2007-0772
Log:
retire CVE-2007-0772


Deleted: active/CVE-2007-0772
===================================================================
--- active/CVE-2007-0772	2007-04-29 20:48:35 UTC (rev 766)
+++ active/CVE-2007-0772	2007-04-29 20:48:51 UTC (rev 767)
@@ -1,22 +0,0 @@
-Candidate: CVE-2007-0772
-References: 
- CONFIRM:http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.1
- FRSIRT:ADV-2007-0660
- URL:http://www.frsirt.com/english/advisories/2007/0660
- SECUNIA:24215
- URL:http://secunia.com/advisories/24215
-Description: 
- The Linux kernel before 2.6.20.1 allows remote attackers to cause a denial
- of service (oops) via a crafed NFSACL 2 ACCESS request that triggers a free
- of an incorrect pointer.
-Ubuntu-Description: 
-Notes: 
- dannf> sarge doesn't have the affected source file
-Bugs: 
-upstream: released (2.6.20.1)
-linux-2.6: released (2.6.18.dfsg.1-11) [bugfix/nfs-acl-free-wrong-pointer.patch]
-2.6.18-etch-security: released (2.6.18.dfsg.1-11) [bugfix/nfs-acl-free-wrong-pointer.patch]
-2.6.8-sarge-security: N/A
-2.4.27-sarge-security: N/A
-2.6.15-dapper-security: released (2.6.15-28.53)
-2.6.17-edgy-security: released (2.6.17.1-11.37)

Copied: retired/CVE-2007-0772 (from rev 766, active/CVE-2007-0772)