[kernel-sec-discuss] r775 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Apr 30 17:16:05 UTC 2007
Author: jmm
Date: 2007-04-30 17:16:04 +0000 (Mon, 30 Apr 2007)
New Revision: 775
Modified:
active/CVE-2005-2873
active/CVE-2006-5871
active/CVE-2007-0001
active/block-all-signals-race
Log:
CVE-2007-0001 is RHEL-specific
We won't backport ipt_recent module to Sarge
Modified: active/CVE-2005-2873
===================================================================
--- active/CVE-2005-2873 2007-04-30 17:08:05 UTC (rev 774)
+++ active/CVE-2005-2873 2007-04-30 17:16:04 UTC (rev 775)
@@ -18,6 +18,8 @@
horms> No patch that is acceptable upstream is available
http://lists.debian.org/debian-kernel/2005/09/msg00257.html
jmm> There's now a complete rewrite by Patrick McHardy in 2.6.18
+ jmm> This change won't be backported to Sarge, if this poses a problem an update
+ jmm> to Etch is required
upstream: released (2.6.18)
Bugs: 332381, 332231, 332228
linux-2.6: released (2.6.18-1)
Modified: active/CVE-2006-5871
===================================================================
--- active/CVE-2006-5871 2007-04-30 17:08:05 UTC (rev 774)
+++ active/CVE-2006-5871 2007-04-30 17:16:04 UTC (rev 775)
@@ -10,3 +10,5 @@
2.4.27-sarge-security: released (2.4.27-10sarge5) [237_smbfs-honor-mount-opts.diff, 240_smbfs-honor-mount-opts-2.diff]
2.6.15-dapper-security:
2.6.17-edgy-security:
+2.6.18-etch-security:
+
Modified: active/CVE-2007-0001
===================================================================
--- active/CVE-2007-0001 2007-04-30 17:08:05 UTC (rev 774)
+++ active/CVE-2007-0001 2007-04-30 17:16:04 UTC (rev 775)
@@ -3,12 +3,17 @@
Description:
Ubuntu-Description:
Notes:
+ jmm> From Red Hat Bugzilla:
+ jmm> Comment [72]#20 From Marcel Holtmann on 2007-02-20 03:15 EST
+ jmm> This issue affects _only_ the Red Hat Enterprise Linux 4 kernel. Other kernel
+ jmm> versions or upstream kernels are _not_ known be affected.
+ jmm> So marking all entries N/A
Bugs:
-upstream:
-linux-2.6:
-2.6.18-etch-security:
-2.6.8-sarge-security:
-2.4.27-sarge-security:
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
+upstream: N/A
+linux-2.6: N/A
+2.6.18-etch-security: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.15-dapper-security: N/A
+2.6.17-edgy-security: N/A
+2.6.20-feisty-security: N/A
Modified: active/block-all-signals-race
===================================================================
--- active/block-all-signals-race 2007-04-30 17:08:05 UTC (rev 774)
+++ active/block-all-signals-race 2007-04-30 17:16:04 UTC (rev 775)
@@ -13,4 +13,5 @@
linux-2.6: pending (2.6.15.5)
2.6.8-sarge-security:
2.4.27-sarge-security:
+2.6.18-etch-security:
More information about the kernel-sec-discuss
mailing list