[kernel-sec-discuss] r1010 - active
dannf at alioth.debian.org
dannf at alioth.debian.org
Wed Nov 7 16:57:01 UTC 2007
Author: dannf
Date: 2007-11-07 16:57:00 +0000 (Wed, 07 Nov 2007)
New Revision: 1010
Modified:
active/CVE-2004-2731
Log:
update debian/upstream status
Modified: active/CVE-2004-2731
===================================================================
--- active/CVE-2004-2731 2007-11-06 02:15:50 UTC (rev 1009)
+++ active/CVE-2004-2731 2007-11-07 16:57:00 UTC (rev 1010)
@@ -10,15 +10,15 @@
size to the copyin function.
Ubuntu-Description:
Notes:
- dannf> The securitytracker reference notes that the issue looks fixed in
- dannf> 2.6.6; it does appear to be fixed in both 2.6.8 and 2.6.18. looks
- dannf> like 2.4 upstream is missing the second fix; I'm working on patch
+ dannf> This appears to have been fixed in 2.5, but 2.4 is still
+ dannf> vulnerable to the second part. I've sent patches to
+ dannf> willy/davem for 2.4 consideration
Bugs:
-upstream:
-linux-2.6:
-2.6.18-etch-security:
-2.6.8-sarge-security:
-2.4.27-sarge-security:
+upstream: released (2.6.0)
+linux-2.6: N/A
+2.6.18-etch-security: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: needed
2.6.15-dapper-security:
2.6.17-edgy-security:
2.6.20-feisty-security:
More information about the kernel-sec-discuss
mailing list