[kernel-sec-discuss] r1088 - active
keescook-guest at alioth.debian.org
keescook-guest at alioth.debian.org
Wed Jan 16 20:56:04 UTC 2008
Author: keescook-guest
Date: 2008-01-16 20:56:03 +0000 (Wed, 16 Jan 2008)
New Revision: 1088
Modified:
active/CVE-2007-5904
active/CVE-2007-5966
active/CVE-2007-6063
active/CVE-2007-6151
active/CVE-2007-6206
active/CVE-2007-6417
active/CVE-2007-6434
active/CVE-2008-0001
Log:
ubuntu CVE updates
Modified: active/CVE-2007-5904
===================================================================
--- active/CVE-2007-5904 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2007-5904 2008-01-16 20:56:03 UTC (rev 1088)
@@ -10,6 +10,7 @@
http://git.kernel.org/?p=linux/kernel/git/sfrench/cifs-2.6.git;a=commit;h=133672efbc1085f9af990bdc145e1822ea93bcf3
Ubuntu-Description:
Notes:
+ kees> failed mount errors: a761ac579b89bc1f00212a42401398108deba65c
Bugs:
upstream:
linux-2.6:
Modified: active/CVE-2007-5966
===================================================================
--- active/CVE-2007-5966 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2007-5966 2008-01-16 20:56:03 UTC (rev 1088)
@@ -11,7 +11,7 @@
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch6) [bugfix/hrtimer-large-relative-timeouts-overflow.patch]
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
-2.6.22-gutsy-security:
+2.6.15-dapper-security: N/A
+2.6.17-edgy-security: pending (2.6.17.1-12.43)
+2.6.20-feisty-security: pending (2.6.20-16.34)
+2.6.22-gutsy-security: pending (2.6.22-14.48)
Modified: active/CVE-2007-6063
===================================================================
--- active/CVE-2007-6063 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2007-6063 2008-01-16 20:56:03 UTC (rev 1088)
@@ -16,7 +16,7 @@
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch6) [bugfix/isdn-net-overflow.patch]
2.6.8-sarge-security:
2.4.27-sarge-security:
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
-2.6.22-gutsy-security:
+2.6.15-dapper-security: pending (2.6.15-51.65)
+2.6.17-edgy-security: pending (2.6.17.1-12.43)
+2.6.20-feisty-security: pending (2.6.20-16.34)
+2.6.22-gutsy-security: pending (2.6.22-14.48)
Modified: active/CVE-2007-6151
===================================================================
--- active/CVE-2007-6151 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2007-6151 2008-01-16 20:56:03 UTC (rev 1088)
@@ -13,6 +13,7 @@
2.6.18-etch-security: pending (2.6.18.dfsg.1-17etch1) [bugfix/i4l-isdn_ioctl-mem-overrun.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [i4l-isdn_ioctl-mem-overrun.dpatch]
2.4.27-sarge-security:
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
+2.6.15-dapper-security: pending (2.6.15-51.65)
+2.6.17-edgy-security: pending (2.6.17.1-12.43)
+2.6.20-feisty-security: pending (2.6.20-16.34)
+2.6.22-gutsy-security: pending (2.6.22-14.48)
Modified: active/CVE-2007-6206
===================================================================
--- active/CVE-2007-6206 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2007-6206 2008-01-16 20:56:03 UTC (rev 1088)
@@ -15,7 +15,7 @@
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch6) [bugfix/coredump-only-to-same-uid.patch]
2.6.8-sarge-security: pending (2.6.8-17sarge1) [coredump-only-to-same-uid.dpatch]
2.4.27-sarge-security:
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
-2.6.22-gutsy-security:
+2.6.15-dapper-security: pending (2.6.15-51.65)
+2.6.17-edgy-security: pending (2.6.17.1-12.43)
+2.6.20-feisty-security: pending (2.6.20-16.34)
+2.6.22-gutsy-security: pending (2.6.22-14.48)
Modified: active/CVE-2007-6417
===================================================================
--- active/CVE-2007-6417 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2007-6417 2008-01-16 20:56:03 UTC (rev 1088)
@@ -17,7 +17,7 @@
2.6.18-etch-security: released (2.6.18.dfsg.1-13etch6) [bugfix/tmpfs-restore-clear_highpage.patch]
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
-2.6.22-gutsy-security:
+2.6.15-dapper-security: pending (2.6.15-51.65)
+2.6.17-edgy-security: pending (2.6.17.1-12.43)
+2.6.20-feisty-security: pending (2.6.20-16.34)
+2.6.22-gutsy-security: pending (2.6.22-14.48)
Modified: active/CVE-2007-6434
===================================================================
--- active/CVE-2007-6434 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2007-6434 2008-01-16 20:56:03 UTC (rev 1088)
@@ -7,13 +7,14 @@
http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.24-rc5
Ubuntu-Description:
Notes:
+ kees> ecaf18c15aac8bb9bed7b7aa0e382fe252e275d5 (however, I think this only applied to 2.6.23 or newer -- security_file_mmap didn't take addresses until then)
Bugs:
upstream: released (2.6.24-rc5)
linux-2.6: released (2.6.23-2)
2.6.18-etch-security: pending (2.6.18.dfsg.1-17etch1) [bugfix/do_brk-security-hook.patch]
2.6.8-sarge-security:
2.4.27-sarge-security:
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
-2.6.22-gutsy-security:
+2.6.15-dapper-security: N/A
+2.6.17-edgy-security: N/A
+2.6.20-feisty-security: N/A
+2.6.22-gutsy-security: N/A
Modified: active/CVE-2008-0001
===================================================================
--- active/CVE-2008-0001 2008-01-16 07:36:58 UTC (rev 1087)
+++ active/CVE-2008-0001 2008-01-16 20:56:03 UTC (rev 1088)
@@ -10,7 +10,7 @@
2.6.18-etch-security: pending (2.6.18.dfsg.1-17etch1) [bugfix/vfs-use-access-mode-flag.patch]
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
-2.6.15-dapper-security:
-2.6.17-edgy-security:
-2.6.20-feisty-security:
-2.6.22-gutsy-security:
+2.6.15-dapper-security: pending (2.6.15-51.65)
+2.6.17-edgy-security: pending (2.6.17.1-12.43)
+2.6.20-feisty-security: pending (2.6.20-16.34)
+2.6.22-gutsy-security: pending (2.6.22-14.48)
More information about the kernel-sec-discuss
mailing list