[kernel-sec-discuss] r1139 - active
jmm at alioth.debian.org
jmm at alioth.debian.org
Fri Feb 22 21:48:27 UTC 2008
Author: jmm
Date: 2008-02-22 21:48:26 +0000 (Fri, 22 Feb 2008)
New Revision: 1139
Modified:
active/CVE-2004-2731
active/CVE-2006-4814
active/CVE-2006-5753
active/CVE-2006-5823
active/CVE-2006-6053
active/CVE-2006-6054
active/CVE-2006-6106
active/CVE-2007-1353
active/CVE-2007-1592
active/CVE-2007-2172
active/CVE-2007-2525
active/CVE-2007-3848
active/CVE-2007-4308
active/CVE-2007-4311
active/CVE-2007-5093
active/CVE-2007-6063
active/CVE-2007-6151
active/CVE-2007-6206
active/CVE-2007-6694
active/CVE-2008-0007
Log:
record changes from 2.4.27 DSA
Modified: active/CVE-2004-2731
===================================================================
--- active/CVE-2004-2731 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2004-2731 2008-02-22 21:48:26 UTC (rev 1139)
@@ -24,7 +24,7 @@
linux-2.6: N/A
2.6.18-etch-security: N/A
2.6.8-sarge-security: N/A
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [249_openpromfs-signedness-bug.diff, 250_openpromfs-checks-1.diff, 251_openpromfs-checks-2.diff, 252_openpromfs-checks-3.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [249_openpromfs-signedness-bug.diff, 250_openpromfs-checks-1.diff, 251_openpromfs-checks-2.diff, 252_openpromfs-checks-3.diff]
2.6.15-dapper-security: N/A
2.6.17-edgy-security: N/A
2.6.20-feisty-security: N/A
Modified: active/CVE-2006-4814
===================================================================
--- active/CVE-2006-4814 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2006-4814 2008-02-22 21:48:26 UTC (rev 1139)
@@ -15,7 +15,7 @@
linux-2.6: released (2.6.18.dfsg.1-9)
2.6.18-etch-security: released (2.6.18.dfsg.1-9)
2.6.8-sarge-security: released (2.6.8-16sarge7) [mincore_hang.dpatch, mincore-fixes.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [239_mincore-hang.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [239_mincore-hang.diff]
2.6.12-breezy-security: released (2.6.12-10.43)
2.6.15-dapper-security: released (2.6.15-28.51)
2.6.17-edgy-security: released (2.6.17.1-11.35)
Modified: active/CVE-2006-5753
===================================================================
--- active/CVE-2006-5753 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2006-5753 2008-02-22 21:48:26 UTC (rev 1139)
@@ -19,7 +19,7 @@
linux-2.6: released (2.6.20-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-13) [bugfix/listxattr-mem-corruption.patch]
2.6.8-sarge-security: released (2.6.8-16sarge7) [listxattr-mem-corruption.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [261_listxattr-mem-corruption.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [261_listxattr-mem-corruption.diff]
2.6.12-breezy-security: released (2.6.12-10.43)
2.6.15-dapper-security: released (2.6.15-28.51)
2.6.17-edgy-security: released (2.6.17.1-11.35)
Modified: active/CVE-2006-5823
===================================================================
--- active/CVE-2006-5823 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2006-5823 2008-02-22 21:48:26 UTC (rev 1139)
@@ -20,7 +20,7 @@
linux-2.6: released (2.6.20-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-10)
2.6.8-sarge-security: pending (2.6.8-17sarge1) [cramfs-check-block-length.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [254_cramfs-check-block-length.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [254_cramfs-check-block-length.diff]
2.6.12-breezy-security: released (2.6.12-10.43)
2.6.15-dapper-security: released (2.6.15-28.51)
2.6.17-edgy-security: released (2.6.17.1-11.35)
Modified: active/CVE-2006-6053
===================================================================
--- active/CVE-2006-6053 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2006-6053 2008-02-22 21:48:26 UTC (rev 1139)
@@ -16,7 +16,7 @@
linux-2.6: released (2.6.20-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-10) [bugfix/2.6.16.38]
2.6.8-sarge-security: released (2.6.8-16sarge7) [ext3-fsfuzz.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [242_ext3-fsfuzz.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [242_ext3-fsfuzz.diff]
2.6.12-breezy-security: released (2.6.12-10.43)
2.6.15-dapper-security: released (2.6.15-28.51)
2.6.17-edgy-security: released (2.6.17.1-11.35)
Modified: active/CVE-2006-6054
===================================================================
--- active/CVE-2006-6054 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2006-6054 2008-02-22 21:48:26 UTC (rev 1139)
@@ -18,7 +18,7 @@
linux-2.6: released (2.6.18.dfsg.1-10) [bugfix/2.6.18.38]
2.6.18-etch-security: released (2.6.18.dfsg.1-10) [bugfix/2.6.16.38]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [ext2-skip-pages-past-num-blocks.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [258_ext2_readdir-f_pos-fix.diff, 259_ext2_readdir-infinite-loop.diff, 260_ext2-skip-pages-past-num-blocks.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [258_ext2_readdir-f_pos-fix.diff, 259_ext2_readdir-infinite-loop.diff, 260_ext2-skip-pages-past-num-blocks.diff]
2.6.12-breezy-security: released (2.6.12-10.43)
2.6.15-dapper-security: released (2.6.15-28.51)
2.6.17-edgy-security: released (2.6.17.1-11.35)
Modified: active/CVE-2006-6106
===================================================================
--- active/CVE-2006-6106 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2006-6106 2008-02-22 21:48:26 UTC (rev 1139)
@@ -19,7 +19,7 @@
linux-2.6: released (2.6.18.dfsg.1-9) [2.6.18.6]
2.6.18-etch-security: released (2.6.18.dfsg.1-9) [2.6.18.6]
2.6.8-sarge-security: released (2.6.8-16sarge7) [bluetooth-capi-size-checks.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [241_bluetooth-capi-size-checks.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [241_bluetooth-capi-size-checks.diff]
2.6.12-breezy-security: released (2.6.12-10.43)
2.6.15-dapper-security: released (2.6.15-28.51)
2.6.17-edgy-security: released (2.6.17.1-11.35)
Modified: active/CVE-2007-1353
===================================================================
--- active/CVE-2007-1353 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-1353 2008-02-22 21:48:26 UTC (rev 1139)
@@ -20,7 +20,7 @@
linux-2.6: released (2.6.22-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch1) [bugfix/bluetooth-l2cap-hci-info-leaks.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [bluetooth-l2cap-hci-info-leaks.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [244_bluetooth-l2cap-hci-info-leaks.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [244_bluetooth-l2cap-hci-info-leaks.diff]
2.6.15-dapper-security: released (2.6.15-28.57)
2.6.17-edgy-security: released (2.6.17.1-11.39) [6529b3249b30c826d8ab991d839c6cb4e952c1ed]
2.6.20-feisty-security: released (2.6.20-16.29)
Modified: active/CVE-2007-1592
===================================================================
--- active/CVE-2007-1592 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-1592 2008-02-22 21:48:26 UTC (rev 1139)
@@ -17,7 +17,7 @@
linux-2.6: released (2.6.20-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-12etch1) [bugfix/ipv6_fl_socklist-no-share.patch]
2.6.8-sarge-security: released (2.6.8-16sarge7) [ipv6_fl_socklist-no-share.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [243_ipv6_fl_socklist-no-share.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [243_ipv6_fl_socklist-no-share.diff]
2.6.15-dapper-security: released (2.6.15-28.54)
2.6.17-edgy-security: released (2.6.17.1-11.38)
2.6.20-feisty-security: released (2.6.20-16.28)
Modified: active/CVE-2007-2172
===================================================================
--- active/CVE-2007-2172 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-2172 2008-02-22 21:48:26 UTC (rev 1139)
@@ -20,7 +20,7 @@
linux-2.6: released (2.6.21-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch2) [bugfix/dn_fib-out-of-bounds.patch, bugfix/ipv4-fib_props-out-of-bounds.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [dn_fib-out-of-bounds.dpatch, ipv4-fib_props-out-of-bounds.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [246_dn_fib-out-of-bounds.diff, 266_ipv4-fib_props-out-of-bounds.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [246_dn_fib-out-of-bounds.diff, 266_ipv4-fib_props-out-of-bounds.diff]
2.6.15-dapper-security: released (2.6.15-28.54)
2.6.17-edgy-security: released (2.6.17.1-11.38)
2.6.20-feisty-security: released (2.6.20-16.28)
Modified: active/CVE-2007-2525
===================================================================
--- active/CVE-2007-2525 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-2525 2008-02-22 21:48:26 UTC (rev 1139)
@@ -16,7 +16,7 @@
linux-2.6: released (2.6.21-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch1) [bugfix/pppoe-socket-release-mem-leak.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [pppoe-socket-release-mem-leak.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [255_pppoe-socket-release-mem-leak.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [255_pppoe-socket-release-mem-leak.diff]
2.6.15-dapper-security: released (2.6.15-28.57)
2.6.17-edgy-security: released (2.6.17.1-11.39) [123623f9ad4d9bbe55c03b33ce79123e948b107f]
2.6.20-feisty-security: released (2.6.20-16.31) [168038c2da7f984a07fd169270b2cac561e1c90c]
Modified: active/CVE-2007-3848
===================================================================
--- active/CVE-2007-3848 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-3848 2008-02-22 21:48:26 UTC (rev 1139)
@@ -16,7 +16,7 @@
linux-2.6: released (2.6.22-4)
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch1) [bugfix/reset-pdeathsig-on-suid.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [reset-pdeathsig-on-suid.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [247_reset-pdeathsig-on-suid.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [247_reset-pdeathsig-on-suid.diff]
2.6.15-dapper-security: released (2.6.15-29.58)
2.6.17-edgy-security: released (2.6.17.1-12.40)
2.6.20-feisty-security: released (2.6.20-16.31)
Modified: active/CVE-2007-4308
===================================================================
--- active/CVE-2007-4308 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-4308 2008-02-22 21:48:26 UTC (rev 1139)
@@ -19,7 +19,7 @@
linux-2.6: released (2.6.22-4)
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch2) [bugfix/aacraid-ioctl-perm-check.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [aacraid-ioctl-perm-check.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [262_aacraid-ioctl-perm-check.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [262_aacraid-ioctl-perm-check.diff]
2.6.15-dapper-security: released (2.6.15-29.58)
2.6.17-edgy-security: released (2.6.17.1-12.40)
2.6.20-feisty-security: released (2.6.20-16.31)
Modified: active/CVE-2007-4311
===================================================================
--- active/CVE-2007-4311 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-4311 2008-02-22 21:48:26 UTC (rev 1139)
@@ -13,7 +13,7 @@
linux-2.6: N/A
2.6.18-etch-security: N/A
2.6.8-sarge-security: N/A
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [248_random-reseed-sizeof-fix.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [248_random-reseed-sizeof-fix.diff]
2.6.15-dapper-security: N/A
2.6.17-edgy-security: N/A
2.6.20-feisty-security: N/A
Modified: active/CVE-2007-5093
===================================================================
--- active/CVE-2007-5093 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-5093 2008-02-22 21:48:26 UTC (rev 1139)
@@ -28,7 +28,7 @@
linux-2.6: released (2.6.23-1)
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch4) [bugfix/usb-pwc-disconnect-block.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [usb-pwc-disconnect-block.dpatch]
-2.4.27-sarge-security: pending (2.4.17-10sarge6) [263_usb-pwc-disconnect-block.diff]
+2.4.27-sarge-security: released (2.4.17-10sarge6) [263_usb-pwc-disconnect-block.diff]
2.6.15-dapper-security: pending (2.6.15-29.61)
2.6.17-edgy-security: released (2.6.17.1-12.42)
2.6.20-feisty-security: released (2.6.20-16.33)
Modified: active/CVE-2007-6063
===================================================================
--- active/CVE-2007-6063 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-6063 2008-02-22 21:48:26 UTC (rev 1139)
@@ -15,7 +15,7 @@
linux-2.6: released (2.6.23-2)
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch6) [bugfix/isdn-net-overflow.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [isdn-net-overflow.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [257_isdn-net-overflow.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [257_isdn-net-overflow.diff]
2.6.15-dapper-security: pending (2.6.15-51.65)
2.6.17-edgy-security: pending (2.6.17.1-12.43)
2.6.20-feisty-security: pending (2.6.20-16.34)
Modified: active/CVE-2007-6151
===================================================================
--- active/CVE-2007-6151 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-6151 2008-02-22 21:48:26 UTC (rev 1139)
@@ -12,7 +12,7 @@
linux-2.6: released (2.6.23-2)
2.6.18-etch-security: released (2.6.18.dfsg.1-17etch1) [bugfix/i4l-isdn_ioctl-mem-overrun.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [i4l-isdn_ioctl-mem-overrun.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [256_i4l-isdn_ioctl-mem-overrun.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [256_i4l-isdn_ioctl-mem-overrun.diff]
2.6.15-dapper-security: pending (2.6.15-51.65)
2.6.17-edgy-security: pending (2.6.17.1-12.43)
2.6.20-feisty-security: pending (2.6.20-16.34)
Modified: active/CVE-2007-6206
===================================================================
--- active/CVE-2007-6206 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-6206 2008-02-22 21:48:26 UTC (rev 1139)
@@ -14,7 +14,7 @@
linux-2.6: needed
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch6) [bugfix/coredump-only-to-same-uid.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [coredump-only-to-same-uid.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [253_coredump-only-to-same-uid.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [253_coredump-only-to-same-uid.diff]
2.6.15-dapper-security: pending (2.6.15-51.65)
2.6.17-edgy-security: pending (2.6.17.1-12.43)
2.6.20-feisty-security: pending (2.6.20-16.34)
Modified: active/CVE-2007-6694
===================================================================
--- active/CVE-2007-6694 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2007-6694 2008-02-22 21:48:26 UTC (rev 1139)
@@ -16,7 +16,7 @@
linux-2.6:
2.6.18-etch-security: pending (2.6.18.dfsg.1-18etch2) [bugfix/powerpc-chrp-null-deref.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge2) [powerpc-chrp-null-deref.dpatch]
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [265_powerpc-chrp-null-deref.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [265_powerpc-chrp-null-deref.diff]
2.6.15-dapper-security:
2.6.17-edgy-security:
2.6.20-feisty-security:
Modified: active/CVE-2008-0007
===================================================================
--- active/CVE-2008-0007 2008-02-22 16:25:28 UTC (rev 1138)
+++ active/CVE-2008-0007 2008-02-22 21:48:26 UTC (rev 1139)
@@ -9,7 +9,7 @@
2.6.18-etch-security: pending (2.6.18.dfsg.1-18etch2) [bugfix/mmap-VM_DONTEXPAND.patch]
2.6.24-etchnhalf-security: needed
2.6.8-sarge-security:
-2.4.27-sarge-security: pending (2.4.27-10sarge6) [264_mmap-VM_DONTEXPAND.diff]
+2.4.27-sarge-security: released (2.4.27-10sarge6) [264_mmap-VM_DONTEXPAND.diff]
2.6.15-dapper-security:
2.6.17-edgy-security:
2.6.20-feisty-security:
More information about the kernel-sec-discuss
mailing list