[kernel-sec-discuss] r1819 - active

Michael Gilbert gilbert-guest at alioth.debian.org
Wed Apr 28 02:22:02 UTC 2010 

Author: gilbert-guest
Date: 2010-04-28 02:22:02 +0000 (Wed, 28 Apr 2010)
New Revision: 1819

Added:
   active/CVE-2010-1436
   active/CVE-2010-1437
Modified:
   active/CVE-2010-1162
   active/CVE-2010-1488
Log:
new issues and a couple fixes in 2.6.32.12

Modified: active/CVE-2010-1162
===================================================================
--- active/CVE-2010-1162	2010-04-27 06:08:48 UTC (rev 1818)
+++ active/CVE-2010-1162	2010-04-28 02:22:02 UTC (rev 1819)
@@ -6,7 +6,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.34-rc4) [6da8d866]
-2.6.32-upstream-stable: needed
-linux-2.6: needed
+2.6.32-upstream-stable: released (2.6.32.12) [e2278e63]
+linux-2.6: pending (2.6.32-12) [bugfix/all/stable/2.6.32.12.patch]
 2.6.26-lenny-security: pending (2.6.26-21lenny5) [bugfix/all/tty-release_one_tty-forgets-to-put-pids.patch]
-2.6.32-squeeze-security: needed
+2.6.32-squeeze-security: pending (2.6.32-12) [bugfix/all/stable/2.6.32.12.patch]

Added: active/CVE-2010-1436
===================================================================
--- active/CVE-2010-1436	                        (rev 0)
+++ active/CVE-2010-1436	2010-04-28 02:22:02 UTC (rev 1819)
@@ -0,0 +1,11 @@
+Candidate: CVE-2010-1436
+Description: gfs2 kernel issue
+References:
+ http://www.openwall.com/lists/oss-security/2010/04/27/1
+Notes:
+Bugs:
+upstream:
+2.6.32-upstream-stable:
+linux-2.6:
+2.6.26-lenny-security:
+2.6.32-squeeze-security:

Added: active/CVE-2010-1437
===================================================================
--- active/CVE-2010-1437	                        (rev 0)
+++ active/CVE-2010-1437	2010-04-28 02:22:02 UTC (rev 1819)
@@ -0,0 +1,11 @@
+Candidate: CVE-2010-1437
+Description: find_keyring_by_name() can gain the freed keyring
+References:
+ http://www.openwall.com/lists/oss-security/2010/04/27/2
+Notes:
+Bugs:
+upstream:
+2.6.32-upstream-stable:
+linux-2.6:
+2.6.26-lenny-security:
+2.6.32-squeeze-security:

Modified: active/CVE-2010-1488
===================================================================
--- active/CVE-2010-1488	2010-04-27 06:08:48 UTC (rev 1818)
+++ active/CVE-2010-1488	2010-04-28 02:22:02 UTC (rev 1819)
@@ -6,7 +6,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.34-rc4) [b95c35e7]
-2.6.32-upstream-stable: needed
-linux-2.6: needed
+2.6.32-upstream-stable: pending (2.6.32.12) [e72f38d3]
+linux-2.6: pending (2.6.32-12) [bugfix/all/stable/2.6.32.12.patch]
 2.6.26-lenny-security: N/A "introduced in 2.6.32 commit 28b83c51"
-2.6.32-squeeze-security: needed
+2.6.32-squeeze-security: pending (2.6.32-12) [bugfix/all/stable/2.6.32.12.patch]

More information about the kernel-sec-discuss mailing list