[kernel-sec-discuss] r832 - active
dannf at alioth.debian.org
dannf at alioth.debian.org
Wed May 23 06:09:32 UTC 2007
Author: dannf
Date: 2007-05-23 06:09:32 +0000 (Wed, 23 May 2007)
New Revision: 832
Modified:
active/CVE-2007-1497
Log:
update 2.4/sarge status
Modified: active/CVE-2007-1497
===================================================================
--- active/CVE-2007-1497 2007-05-23 06:03:55 UTC (rev 831)
+++ active/CVE-2007-1497 2007-05-23 06:09:32 UTC (rev 832)
@@ -15,12 +15,13 @@
final packet always had the 'established' state. A remote attacker
could exploit this to bypass intended firewall rules.
Notes:
+ dannf> code didn't exist in 2.4
Bugs:
upstream: released (2.6.20.3, 2.6.21)
linux-2.6: released (2.6.20-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-12etch2) [bugfix/nf_conntrack-set-nfctinfo.patch]
2.6.8-sarge-security:
-2.4.27-sarge-security:
+2.4.27-sarge-security: N/A
2.6.15-dapper-security: pending (2.6.15-28.54)
2.6.17-edgy-security: pending (2.6.17.1-11.38)
2.6.20-feisty-security: N/A
More information about the kernel-sec-discuss
mailing list