[kernel-sec-discuss] r801 - active

[Moritz Muehlenhoff]

Author: jmm
Date: 2007-05-01 00:50:45 +0000 (Tue, 01 May 2007)
New Revision: 801

Modified:
   active/CVE-2006-5753
   active/CVE-2006-5757
Log:
checked ISO9660 issue for 2.4.27
update 2.6.20 status


Modified: active/CVE-2006-5753
===================================================================
--- active/CVE-2006-5753	2007-05-01 00:29:30 UTC (rev 800)
+++ active/CVE-2006-5753	2007-05-01 00:50:45 UTC (rev 801)
@@ -16,7 +16,7 @@
 Notes: 
 Bugs: 
 upstream: released (2.6.20-rc5)
-linux-2.6: 
+linux-2.6: released (2.6.20-1)
 2.6.18-etch-security: pending (2.6.18.dfsg.1-11etch1) [bugfix/listxattr-mem-corruption.patch]
 2.6.8-sarge-security: pending (2.6.8-16sarge7) [listxattr-mem-corruption.dpatch]
 2.4.27-sarge-security: 

Modified: active/CVE-2006-5757
===================================================================
--- active/CVE-2006-5757	2007-05-01 00:29:30 UTC (rev 800)
+++ active/CVE-2006-5757	2007-05-01 00:50:45 UTC (rev 801)
@@ -16,12 +16,13 @@
  http://projects.info-pull.com/mokb/MOKB-19-11-2006.html
  dannf> Tried the MOKB-05-11-2006 reproducer on 2.4.27/ia64 & no
  dannf> infinite loop was triggered
-Bugs: 
+ jmm> 2.4.27 has range checks, marking N/A
+Bugs:
 upstream: released (2.6.19-rc2)
 linux-2.6: released (2.6.18.dfsg.1-10) [2.6.16.38]
 2.6.18-etch-security: released (2.6.18.dfsg.1-10) [2.6.16.38]
 2.6.8-sarge-security: pending (2.6.8-16sarge7) [__find_get_block_slow-race.dpatch]
-2.4.27-sarge-security:
+2.4.27-sarge-security: N/A
 2.6.12-breezy-security: released (2.6.12-10.43)
 2.6.15-dapper-security: released (2.6.15-28.51)
 2.6.17-edgy-security: released (2.6.17.1-11.35)