[kernel-sec-discuss] r775 - active

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Apr 30 17:16:05 UTC 2007 

Author: jmm
Date: 2007-04-30 17:16:04 +0000 (Mon, 30 Apr 2007)
New Revision: 775

Modified:
   active/CVE-2005-2873
   active/CVE-2006-5871
   active/CVE-2007-0001
   active/block-all-signals-race
Log:
CVE-2007-0001 is RHEL-specific
We won't backport ipt_recent module to Sarge


Modified: active/CVE-2005-2873
===================================================================
--- active/CVE-2005-2873	2007-04-30 17:08:05 UTC (rev 774)
+++ active/CVE-2005-2873	2007-04-30 17:16:04 UTC (rev 775)
@@ -18,6 +18,8 @@
  horms> No patch that is acceptable upstream is available
  http://lists.debian.org/debian-kernel/2005/09/msg00257.html
  jmm> There's now a complete rewrite by Patrick McHardy in 2.6.18
+ jmm> This change won't be backported to Sarge, if this poses a problem an update
+ jmm> to Etch is required
 upstream: released (2.6.18)
 Bugs: 332381, 332231, 332228
 linux-2.6: released (2.6.18-1)

Modified: active/CVE-2006-5871
===================================================================
--- active/CVE-2006-5871	2007-04-30 17:08:05 UTC (rev 774)
+++ active/CVE-2006-5871	2007-04-30 17:16:04 UTC (rev 775)
@@ -10,3 +10,5 @@
 2.4.27-sarge-security: released (2.4.27-10sarge5) [237_smbfs-honor-mount-opts.diff, 240_smbfs-honor-mount-opts-2.diff]
 2.6.15-dapper-security:
 2.6.17-edgy-security:
+2.6.18-etch-security: 
+

Modified: active/CVE-2007-0001
===================================================================
--- active/CVE-2007-0001	2007-04-30 17:08:05 UTC (rev 774)
+++ active/CVE-2007-0001	2007-04-30 17:16:04 UTC (rev 775)
@@ -3,12 +3,17 @@
 Description: 
 Ubuntu-Description: 
 Notes: 
+ jmm> From Red Hat Bugzilla:
+ jmm>  Comment [72]#20 From Marcel Holtmann on 2007-02-20 03:15 EST
+ jmm>  This issue affects _only_ the Red Hat Enterprise Linux 4 kernel. Other kernel
+ jmm>  versions or upstream kernels are _not_ known be affected.
+ jmm> So marking all entries N/A
 Bugs: 
-upstream: 
-linux-2.6: 
-2.6.18-etch-security: 
-2.6.8-sarge-security: 
-2.4.27-sarge-security: 
-2.6.15-dapper-security: 
-2.6.17-edgy-security: 
-2.6.20-feisty-security: 
+upstream: N/A
+linux-2.6: N/A
+2.6.18-etch-security: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.15-dapper-security: N/A
+2.6.17-edgy-security: N/A
+2.6.20-feisty-security: N/A

Modified: active/block-all-signals-race
===================================================================
--- active/block-all-signals-race	2007-04-30 17:08:05 UTC (rev 774)
+++ active/block-all-signals-race	2007-04-30 17:16:04 UTC (rev 775)
@@ -13,4 +13,5 @@
 linux-2.6: pending (2.6.15.5)
 2.6.8-sarge-security: 
 2.4.27-sarge-security: 
+2.6.18-etch-security:

More information about the kernel-sec-discuss mailing list