[kernel-sec-discuss] r1387 - active retired
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue May 19 09:08:19 UTC 2009
Author: jmm
Date: 2009-05-19 09:08:19 +0000 (Tue, 19 May 2009)
New Revision: 1387
Added:
retired/CVE-2008-3276
retired/CVE-2008-3792
Removed:
active/CVE-2008-3276
active/CVE-2008-3792
Modified:
active/CVE-2008-4618
Log:
retire issues, add upstream status
Deleted: active/CVE-2008-3276
===================================================================
--- active/CVE-2008-3276 2009-05-19 09:03:43 UTC (rev 1386)
+++ active/CVE-2008-3276 2009-05-19 09:08:19 UTC (rev 1387)
@@ -1,17 +0,0 @@
-Candidate: CVE-2008-3276
-Description:
-References:
- http://article.gmane.org/gmane.comp.security.oss.general/814
-Ubuntu-Description:
-Notes:
-Bugs:
-upstream: released (2.6.26.3)
-linux-2.6: released (2.6.26-4)
-2.6.18-etch-security: released (2.6.18.dfsg.1-22etch3) [bugfix/dccp-change-l-r-must-have-at-least-one-byte-in-the-dccpsf_val-field.patch]
-2.6.24-etch-security: released (2.6.24-6~etchnhalf.5) [bugfix/dccp-change-l-r-must-have-at-least-one-byte-in-the-dccpsf_val-field.patch]
-2.6.26-lenny-security: released (2.6.26-4) [bugfix/all/stable/2.6.26.3.patch]
-2.6.15-dapper-security: N/A
-2.6.20-feisty-security: N/A
-2.6.22-gutsy-security: released (2.6.22-15.59)
-2.6.24-hardy-security: released (2.6.24-21.43)
-2.6.27-intrepid-security: N/A
Deleted: active/CVE-2008-3792
===================================================================
--- active/CVE-2008-3792 2009-05-19 09:03:43 UTC (rev 1386)
+++ active/CVE-2008-3792 2009-05-19 09:08:19 UTC (rev 1387)
@@ -1,18 +0,0 @@
-Candidate: CVE-2008-3792
-Description:
-References:
- http://comments.gmane.org/gmane.comp.security.oss.general/843
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=5e739d1752aca4e8f3e794d431503bfca3162df4
-Ubuntu-Description:
-Notes:
-Bugs:
-upstream: released (2.6.27)
-linux-2.6: released (2.6.26-4) [bugfix/sctp-auth-panics.patch]
-2.6.18-etch-security: N/A
-2.6.24-etch-security: released (2.6.24-6~etchhalf.5) [bugfix/sctp-fix-length-in-AUTH_CHUNKS-option.patch, bugfix/sctp-auth-panics.patch]
-2.6.26-lenny-security: released (2.6.26-4) [bugfix/sctp-auth-panics.patch]
-2.6.15-dapper-security: N/A
-2.6.20-feisty-security: N/A
-2.6.22-gutsy-security: N/A
-2.6.24-hardy-security: released (2.6.24-21.43)
-2.6.27-intrepid-security: N/A
Modified: active/CVE-2008-4618
===================================================================
--- active/CVE-2008-4618 2009-05-19 09:03:43 UTC (rev 1386)
+++ active/CVE-2008-4618 2009-05-19 09:08:19 UTC (rev 1387)
@@ -5,7 +5,7 @@
Ubuntu-Description:
Notes:
Bugs:
-upstream:
+upstream: released (2.6.27)
linux-2.6: released (2.6.26-10) [bugfix/all/sctp-fix-kernel-panic-while-process-protocol-violation-parameter.patch]
2.6.18-etch-security: N/A "vulnerable code not present"
2.6.24-etch-security: released (2.6.24-6~etchnhalf.7) [bugfix/all/sctp-fix-kernel-panic-while-process-protocol-violation-parameter.patch]
Copied: retired/CVE-2008-3276 (from rev 1361, active/CVE-2008-3276)
===================================================================
--- retired/CVE-2008-3276 (rev 0)
+++ retired/CVE-2008-3276 2009-05-19 09:08:19 UTC (rev 1387)
@@ -0,0 +1,17 @@
+Candidate: CVE-2008-3276
+Description:
+References:
+ http://article.gmane.org/gmane.comp.security.oss.general/814
+Ubuntu-Description:
+Notes:
+Bugs:
+upstream: released (2.6.26.3)
+linux-2.6: released (2.6.26-4)
+2.6.18-etch-security: released (2.6.18.dfsg.1-22etch3) [bugfix/dccp-change-l-r-must-have-at-least-one-byte-in-the-dccpsf_val-field.patch]
+2.6.24-etch-security: released (2.6.24-6~etchnhalf.5) [bugfix/dccp-change-l-r-must-have-at-least-one-byte-in-the-dccpsf_val-field.patch]
+2.6.26-lenny-security: released (2.6.26-4) [bugfix/all/stable/2.6.26.3.patch]
+2.6.15-dapper-security: N/A
+2.6.20-feisty-security: N/A
+2.6.22-gutsy-security: released (2.6.22-15.59)
+2.6.24-hardy-security: released (2.6.24-21.43)
+2.6.27-intrepid-security: N/A
Copied: retired/CVE-2008-3792 (from rev 1386, active/CVE-2008-3792)
===================================================================
--- retired/CVE-2008-3792 (rev 0)
+++ retired/CVE-2008-3792 2009-05-19 09:08:19 UTC (rev 1387)
@@ -0,0 +1,18 @@
+Candidate: CVE-2008-3792
+Description:
+References:
+ http://comments.gmane.org/gmane.comp.security.oss.general/843
+ http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=5e739d1752aca4e8f3e794d431503bfca3162df4
+Ubuntu-Description:
+Notes:
+Bugs:
+upstream: released (2.6.27)
+linux-2.6: released (2.6.26-4) [bugfix/sctp-auth-panics.patch]
+2.6.18-etch-security: N/A
+2.6.24-etch-security: released (2.6.24-6~etchhalf.5) [bugfix/sctp-fix-length-in-AUTH_CHUNKS-option.patch, bugfix/sctp-auth-panics.patch]
+2.6.26-lenny-security: released (2.6.26-4) [bugfix/sctp-auth-panics.patch]
+2.6.15-dapper-security: N/A
+2.6.20-feisty-security: N/A
+2.6.22-gutsy-security: N/A
+2.6.24-hardy-security: released (2.6.24-21.43)
+2.6.27-intrepid-security: N/A
More information about the kernel-sec-discuss
mailing list