[kernel-sec-discuss] r1019 - active ignored

Sun Nov 18 10:58:22 UTC 2007

Author: jmm
Date: 2007-11-18 10:58:21 +0000 (Sun, 18 Nov 2007)
New Revision: 1019

Modified:
   active/CVE-2004-2731
   active/CVE-2006-5823
   active/CVE-2007-5501
   ignored/CVE-2006-6058
Log:
record upstream fixes for 2.4 and 2.6


Modified: active/CVE-2004-2731
===================================================================

--- active/CVE-2004-2731	2007-11-16 21:40:35 UTC (rev 1018)
+++ active/CVE-2004-2731	2007-11-18 10:58:21 UTC (rev 1019)
@@ -20,7 +20,7 @@
  dannf>
  dannf> Patches have been accepted, see References section
 Bugs: 
-upstream: released (2.5.33), pending (2.4.36)
+upstream: released (2.5.33), released (2.4.35.4)
 linux-2.6: N/A
 2.6.18-etch-security: N/A
 2.6.8-sarge-security: N/A
@@ -28,3 +28,4 @@
 2.6.15-dapper-security: 
 2.6.17-edgy-security: 
 2.6.20-feisty-security: 
+	
\ No newline at end of file

Modified: active/CVE-2006-5823
===================================================================
--- active/CVE-2006-5823	2007-11-16 21:40:35 UTC (rev 1018)
+++ active/CVE-2006-5823	2007-11-18 10:58:21 UTC (rev 1019)
@@ -15,10 +15,9 @@
  crash the kernel.
 Notes: 
  dannf> This is reproducible in 2.4.27
- jmm> Contacted Willy
 Bugs: 
 upstream: released (2.6.20-rc1)
-linux-2.6: released (2.6.20-1)
+linux-2.6: released (2.6.20-1), released (2.4.35.4)
 2.6.18-etch-security: released (2.6.18.dfsg.1-10)
 2.6.8-sarge-security: needed
 2.4.27-sarge-security: needed

Modified: active/CVE-2007-5501
===================================================================
--- active/CVE-2007-5501	2007-11-16 21:40:35 UTC (rev 1018)
+++ active/CVE-2007-5501	2007-11-18 10:58:21 UTC (rev 1019)
@@ -7,7 +7,7 @@
  dannf> Jan Lieskovsky pointed out that tcp_write_queue_head() was introduced
  dannf> in 2.6.21-git1
 Bugs: 
-upstream: pending (2.6.24-rc3)
+upstream: pending (2.6.24-rc3), released (2.6.23.8)
 linux-2.6: needed
 2.6.18-etch-security: N/A
 2.6.8-sarge-security: N/A

Modified: ignored/CVE-2006-6058
===================================================================
--- ignored/CVE-2006-6058	2007-11-16 21:40:35 UTC (rev 1018)
+++ ignored/CVE-2006-6058	2007-11-18 10:58:21 UTC (rev 1019)
@@ -17,7 +17,7 @@
         and don't know if there's an upstream fix
  jmm> We can ignore this, it has no practical ramifications
 Bugs: 
-upstream: 
+upstream: released (2.6.23.2)
 linux-2.6: ignored
 2.6.18-etch-security: ignored
 2.6.8-sarge-security: ignored


