[kernel-sec-discuss] r1514 - active

Dann Frazier dannf at alioth.debian.org
Mon Oct 19 01:28:41 UTC 2009 

Author: dannf
Date: 2009-10-19 01:28:41 +0000 (Mon, 19 Oct 2009)
New Revision: 1514

Modified:
   active/CVE-2008-4609
   active/CVE-2009-2910
   active/CVE-2009-3286
   active/CVE-2009-3613
Log:
debian updates


Modified: active/CVE-2008-4609
===================================================================
--- active/CVE-2008-4609	2009-10-16 22:58:23 UTC (rev 1513)
+++ active/CVE-2008-4609	2009-10-19 01:28:41 UTC (rev 1514)
@@ -17,7 +17,7 @@
 linux-2.6:
 2.6.18-etch-security:
 2.6.24-etch-security:
-2.6.26-lenny-security:
+2.6.26-lenny-security: ignored "no upstream fix"
 2.6.15-dapper-security:
 2.6.22-gutsy-security:
 2.6.24-hardy-security:

Modified: active/CVE-2009-2910
===================================================================
--- active/CVE-2009-2910	2009-10-16 22:58:23 UTC (rev 1513)
+++ active/CVE-2009-2910	2009-10-19 01:28:41 UTC (rev 1514)
@@ -9,8 +9,8 @@
  urgent since it may be possible to piece the info together to recover passwords or
  other badness
 Bugs:
-upstream: released (2.6.31.4) [ee39c2f3e1e667314c018c9fd1e205c97e746bd2], pending (2.6.32-rc4) [24e35800cdc4350fc34e2bed37b608a9e13ab3b6]
+upstream: released (2.6.31.4) [ee39c2f3e1e667314c018c9fd1e205c97e746bd2], released (2.6.32-rc4) [24e35800cdc4350fc34e2bed37b608a9e13ab3b6]
 linux-2.6: needed
 2.6.18-etch-security:
 2.6.24-etch-security:
-2.6.26-lenny-security:
+2.6.26-lenny-security: pending (2.6.26-19lenny1) [bugfix/x86/x86-64-slightly-stream-line-32-bit-syscall-entry-code.patch, bugfix/x86/don-t-leak-64-bit-kernel-register-values-to-32-bit-processes.patch]

Modified: active/CVE-2009-3286
===================================================================
--- active/CVE-2009-3286	2009-10-16 22:58:23 UTC (rev 1513)
+++ active/CVE-2009-3286	2009-10-19 01:28:41 UTC (rev 1514)
@@ -14,9 +14,9 @@
 Bugs:
 upstream: released (2.6.30-rc1) [79fb54ab]
 linux-2.6: released (2.6.30-1)
-2.6.18-etch-security: needed
+2.6.18-etch-security: needed "also needs some 2.6.19 backports"
 2.6.24-etch-security: needed
-2.6.26-lenny-security: needed
+2.6.26-lenny-security: pending (2.6.26-19lenny1) [bugfix/all/nfsd4-de-union-iattr-and-verf.patch]
 2.6.15-dapper-security:
 2.6.22-gutsy-security:
 2.6.24-hardy-security:

Modified: active/CVE-2009-3613
===================================================================
--- active/CVE-2009-3613	2009-10-16 22:58:23 UTC (rev 1513)
+++ active/CVE-2009-3613	2009-10-19 01:28:41 UTC (rev 1514)
@@ -11,4 +11,4 @@
 linux-2.6: released (2.6.29-1)
 2.6.18-etch-security:
 2.6.24-etch-security:
-2.6.26-lenny-security:
+2.6.26-lenny-security: pending (2.6.26-19lenny1) [bugfix/all/r8169-use-hardware-auto-padding.patch]

More information about the kernel-sec-discuss mailing list