[kernel-sec-discuss] r1019 - active ignored
jmm at alioth.debian.org
jmm at alioth.debian.org
Sun Nov 18 10:58:22 UTC 2007
Author: jmm
Date: 2007-11-18 10:58:21 +0000 (Sun, 18 Nov 2007)
New Revision: 1019
Modified:
active/CVE-2004-2731
active/CVE-2006-5823
active/CVE-2007-5501
ignored/CVE-2006-6058
Log:
record upstream fixes for 2.4 and 2.6
Modified: active/CVE-2004-2731
===================================================================
--- active/CVE-2004-2731 2007-11-16 21:40:35 UTC (rev 1018)
+++ active/CVE-2004-2731 2007-11-18 10:58:21 UTC (rev 1019)
@@ -20,7 +20,7 @@
dannf>
dannf> Patches have been accepted, see References section
Bugs:
-upstream: released (2.5.33), pending (2.4.36)
+upstream: released (2.5.33), released (2.4.35.4)
linux-2.6: N/A
2.6.18-etch-security: N/A
2.6.8-sarge-security: N/A
@@ -28,3 +28,4 @@
2.6.15-dapper-security:
2.6.17-edgy-security:
2.6.20-feisty-security:
+
\ No newline at end of file
Modified: active/CVE-2006-5823
===================================================================
--- active/CVE-2006-5823 2007-11-16 21:40:35 UTC (rev 1018)
+++ active/CVE-2006-5823 2007-11-18 10:58:21 UTC (rev 1019)
@@ -15,10 +15,9 @@
crash the kernel.
Notes:
dannf> This is reproducible in 2.4.27
- jmm> Contacted Willy
Bugs:
upstream: released (2.6.20-rc1)
-linux-2.6: released (2.6.20-1)
+linux-2.6: released (2.6.20-1), released (2.4.35.4)
2.6.18-etch-security: released (2.6.18.dfsg.1-10)
2.6.8-sarge-security: needed
2.4.27-sarge-security: needed
Modified: active/CVE-2007-5501
===================================================================
--- active/CVE-2007-5501 2007-11-16 21:40:35 UTC (rev 1018)
+++ active/CVE-2007-5501 2007-11-18 10:58:21 UTC (rev 1019)
@@ -7,7 +7,7 @@
dannf> Jan Lieskovsky pointed out that tcp_write_queue_head() was introduced
dannf> in 2.6.21-git1
Bugs:
-upstream: pending (2.6.24-rc3)
+upstream: pending (2.6.24-rc3), released (2.6.23.8)
linux-2.6: needed
2.6.18-etch-security: N/A
2.6.8-sarge-security: N/A
Modified: ignored/CVE-2006-6058
===================================================================
--- ignored/CVE-2006-6058 2007-11-16 21:40:35 UTC (rev 1018)
+++ ignored/CVE-2006-6058 2007-11-18 10:58:21 UTC (rev 1019)
@@ -17,7 +17,7 @@
and don't know if there's an upstream fix
jmm> We can ignore this, it has no practical ramifications
Bugs:
-upstream:
+upstream: released (2.6.23.2)
linux-2.6: ignored
2.6.18-etch-security: ignored
2.6.8-sarge-security: ignored
More information about the kernel-sec-discuss
mailing list