[kernel-sec-discuss] r1064 - active
dannf at alioth.debian.org
dannf at alioth.debian.org
Mon Dec 17 03:56:38 UTC 2007
Author: dannf
Date: 2007-12-17 03:56:38 +0000 (Mon, 17 Dec 2007)
New Revision: 1064
Modified:
active/CVE-2006-6128
active/CVE-2006-6921
active/CVE-2006-7051
active/CVE-2007-2480
active/CVE-2007-2878
active/CVE-2007-3719
active/CVE-2007-4571
Log:
etch updates
Modified: active/CVE-2006-6128
===================================================================
--- active/CVE-2006-6128 2007-12-17 03:36:19 UTC (rev 1063)
+++ active/CVE-2006-6128 2007-12-17 03:56:38 UTC (rev 1064)
@@ -13,13 +13,13 @@
ReiserFS file system that triggers memory corruption when a sync is performed.
Ubuntu-Description:
Notes:
- dannf> low impact - ignoring for sarge for now
+ dannf> low impact; no known upstream fix
jmm> ignored, only exploitable with manipulated fs images, for which mount
jmm> privs are needed
Bugs:
upstream:
linux-2.6: ignored
-2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch5)
+2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch6)
2.6.8-sarge-security: ignored (2.6.8-16sarge7)
2.4.27-sarge-security: ignored (2.4.27-10sarge6)
2.6.15-dapper-security: ignored
Modified: active/CVE-2006-6921
===================================================================
--- active/CVE-2006-6921 2007-12-17 03:36:19 UTC (rev 1063)
+++ active/CVE-2006-6921 2007-12-17 03:56:38 UTC (rev 1064)
@@ -14,7 +14,7 @@
Bugs:
upstream:
linux-2.6: needed
-2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch5)
+2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch6) "no upstream fix"
2.6.8-sarge-security: ignored (2.6.8-16sarge7)
2.4.27-sarge-security: N/A
2.6.15-dapper-security: ignored
Modified: active/CVE-2006-7051
===================================================================
--- active/CVE-2006-7051 2007-12-17 03:36:19 UTC (rev 1063)
+++ active/CVE-2006-7051 2007-12-17 03:56:38 UTC (rev 1064)
@@ -20,7 +20,7 @@
Bugs:
upstream:
linux-2.6:
-2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch5) "no upstream patch"
+2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch6) "no upstream patch"
2.6.8-sarge-security:
2.4.27-sarge-security:
2.6.15-dapper-security: ignore (no upstream patch)
Modified: active/CVE-2007-2480
===================================================================
--- active/CVE-2007-2480 2007-12-17 03:36:19 UTC (rev 1063)
+++ active/CVE-2007-2480 2007-12-17 03:56:38 UTC (rev 1064)
@@ -13,7 +13,7 @@
Bugs:
upstream: released (2.6.22)
linux-2.6: released (2.6.22-1)
-2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch5) "needs backport"
+2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch6) "needs backport"
2.6.8-sarge-security:
2.4.27-sarge-security:
2.6.15-dapper-security: needed (needs backporting)
Modified: active/CVE-2007-2878
===================================================================
--- active/CVE-2007-2878 2007-12-17 03:36:19 UTC (rev 1063)
+++ active/CVE-2007-2878 2007-12-17 03:56:38 UTC (rev 1064)
@@ -21,7 +21,7 @@
Bugs:
upstream: released (2.6.21.2)
linux-2.6: released (2.6.21-3)
-2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch5) "ABI breaker"
+2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch6) "ABI breaker"
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.6.15-dapper-security: released (2.6.15-28.57)
Modified: active/CVE-2007-3719
===================================================================
--- active/CVE-2007-3719 2007-12-17 03:36:19 UTC (rev 1063)
+++ active/CVE-2007-3719 2007-12-17 03:56:38 UTC (rev 1064)
@@ -10,7 +10,7 @@
Bugs:
upstream:
linux-2.6:
-2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch5) "no upstream fix"
+2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch6) "no upstream fix"
2.6.8-sarge-security:
2.4.27-sarge-security:
2.6.15-dapper-security: ignore (low priority, no obvious upstream fix)
Modified: active/CVE-2007-4571
===================================================================
--- active/CVE-2007-4571 2007-12-17 03:36:19 UTC (rev 1063)
+++ active/CVE-2007-4571 2007-12-17 03:56:38 UTC (rev 1064)
@@ -16,7 +16,7 @@
Bugs:
upstream: released (2.6.22.8)
linux-2.6: released (2.6.22-5)
-2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch5) "ABI Changer"
+2.6.18-etch-security: ignored (2.6.18.dfsg.1-13etch6) "ABI Changer"
2.6.8-sarge-security:
2.4.27-sarge-security:
2.6.15-dapper-security: deferred
More information about the kernel-sec-discuss
mailing list