[kernel-sec-discuss] r801 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue May 1 00:50:46 UTC 2007
Author: jmm
Date: 2007-05-01 00:50:45 +0000 (Tue, 01 May 2007)
New Revision: 801
Modified:
active/CVE-2006-5753
active/CVE-2006-5757
Log:
checked ISO9660 issue for 2.4.27
update 2.6.20 status
Modified: active/CVE-2006-5753
===================================================================
--- active/CVE-2006-5753 2007-05-01 00:29:30 UTC (rev 800)
+++ active/CVE-2006-5753 2007-05-01 00:50:45 UTC (rev 801)
@@ -16,7 +16,7 @@
Notes:
Bugs:
upstream: released (2.6.20-rc5)
-linux-2.6:
+linux-2.6: released (2.6.20-1)
2.6.18-etch-security: pending (2.6.18.dfsg.1-11etch1) [bugfix/listxattr-mem-corruption.patch]
2.6.8-sarge-security: pending (2.6.8-16sarge7) [listxattr-mem-corruption.dpatch]
2.4.27-sarge-security:
Modified: active/CVE-2006-5757
===================================================================
--- active/CVE-2006-5757 2007-05-01 00:29:30 UTC (rev 800)
+++ active/CVE-2006-5757 2007-05-01 00:50:45 UTC (rev 801)
@@ -16,12 +16,13 @@
http://projects.info-pull.com/mokb/MOKB-19-11-2006.html
dannf> Tried the MOKB-05-11-2006 reproducer on 2.4.27/ia64 & no
dannf> infinite loop was triggered
-Bugs:
+ jmm> 2.4.27 has range checks, marking N/A
+Bugs:
upstream: released (2.6.19-rc2)
linux-2.6: released (2.6.18.dfsg.1-10) [2.6.16.38]
2.6.18-etch-security: released (2.6.18.dfsg.1-10) [2.6.16.38]
2.6.8-sarge-security: pending (2.6.8-16sarge7) [__find_get_block_slow-race.dpatch]
-2.4.27-sarge-security:
+2.4.27-sarge-security: N/A
2.6.12-breezy-security: released (2.6.12-10.43)
2.6.15-dapper-security: released (2.6.15-28.51)
2.6.17-edgy-security: released (2.6.17.1-11.35)
More information about the kernel-sec-discuss
mailing list