[kernel-sec-discuss] r1650 - active
Michael Gilbert
gilbert-guest at alioth.debian.org
Tue Dec 15 03:10:46 UTC 2009
Author: gilbert-guest
Date: 2009-12-15 03:10:39 +0000 (Tue, 15 Dec 2009)
New Revision: 1650
Added:
active/CVE-2009-4138
Log:
new issue
Added: active/CVE-2009-4138
===================================================================
--- active/CVE-2009-4138 (rev 0)
+++ active/CVE-2009-4138 2009-12-15 03:10:39 UTC (rev 1650)
@@ -0,0 +1,15 @@
+Candidate: CVE-2009-4138
+Description:
+ firewire: ohci: handle receive packets with a data length of zero
+References:
+ http://www.openwall.com/lists/oss-security/2009/12/15/1
+Notes:
+Bugs:
+upstream: pending (2.6.33-rc1) [8c0c0cc2]
+2.6.31-upstream-stable:
+2.6.32-upstream-stable:
+linux-2.6: needed
+2.6.18-etch-security: N/A "ohci introduced in 2.6.22"
+2.6.24-etch-security: needed
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: needed
More information about the kernel-sec-discuss
mailing list