[kernel-sec-discuss] r1430 - active
Michael Gilbert
gilbert-guest at alioth.debian.org
Tue Jul 28 21:17:32 UTC 2009
Author: gilbert-guest
Date: 2009-07-28 21:17:32 +0000 (Tue, 28 Jul 2009)
New Revision: 1430
Added:
active/CVE-2009-2406
active/CVE-2009-2407
Log:
new issues
Copied: active/CVE-2009-2406 (from rev 1429, active/00boilerplate)
===================================================================
--- active/CVE-2009-2406 (rev 0)
+++ active/CVE-2009-2406 2009-07-28 21:17:32 UTC (rev 1430)
@@ -0,0 +1,19 @@
+Candidate: CVE-2009-2406
+Description:
+ Ramon de Carvalho Valle discovered that eCryptfs did not correctly
+ validate certain buffer sizes. A local attacker could create specially
+ crafted eCryptfs files to crash the system or gain elevated privileges.
+References:
+ http://www.ubuntu.com/usn/usn-807-1
+Ubuntu-Description:
+Notes:
+Bugs:
+upstream:
+linux-2.6:
+2.6.18-etch-security:
+2.6.24-etch-security:
+2.6.26-lenny-security:
+2.6.15-dapper-security:
+2.6.22-gutsy-security:
+2.6.24-hardy-security:
+2.6.27-intrepid-security:
Copied: active/CVE-2009-2407 (from rev 1429, active/00boilerplate)
===================================================================
--- active/CVE-2009-2407 (rev 0)
+++ active/CVE-2009-2407 2009-07-28 21:17:32 UTC (rev 1430)
@@ -0,0 +1,19 @@
+Candidate: CVE-2009-2406
+Description:
+ Ramon de Carvalho Valle discovered that eCryptfs did not correctly
+ validate certain buffer sizes. A local attacker could create specially
+ crafted eCryptfs files to crash the system or gain elevated privileges.
+References:
+ http://www.ubuntu.com/usn/usn-807-1
+Ubuntu-Description:
+Notes:
+Bugs:
+upstream:
+linux-2.6:
+2.6.18-etch-security:
+2.6.24-etch-security:
+2.6.26-lenny-security:
+2.6.15-dapper-security:
+2.6.22-gutsy-security:
+2.6.24-hardy-security:
+2.6.27-intrepid-security:
More information about the kernel-sec-discuss
mailing list