[kernel-sec-discuss] r1714 - active
Michael Gilbert
gilbert-guest at alioth.debian.org
Fri Feb 5 04:11:01 UTC 2010
Author: gilbert-guest
Date: 2010-02-05 04:11:00 +0000 (Fri, 05 Feb 2010)
New Revision: 1714
Modified:
active/CVE-2010-0291
active/CVE-2010-0307
active/CVE-2010-0309
active/CVE-2010-0410
Log:
more info and another new issue
Modified: active/CVE-2010-0291
===================================================================
--- active/CVE-2010-0291 2010-02-05 04:10:52 UTC (rev 1713)
+++ active/CVE-2010-0291 2010-02-05 04:11:00 UTC (rev 1714)
@@ -1,5 +1,6 @@
Candidate: CVE-2010-0291
Description:
+ untangle to do_mremap mess
References:
http://groups.google.com/group/linux.kernel/msg/895f20870532241e
http://groups.google.co.jp/group/fa.linux.kernel/browse_thread/thread/8bf22336b1082090
Modified: active/CVE-2010-0307
===================================================================
--- active/CVE-2010-0307 2010-02-05 04:10:52 UTC (rev 1713)
+++ active/CVE-2010-0307 2010-02-05 04:11:00 UTC (rev 1714)
@@ -1,5 +1,6 @@
Candidate: CVE-2010-0307
Description:
+ denial-of-service in fs/binfmt_elf.c on amd64
References:
http://www.openwall.com/lists/oss-security/2010/02/01/1
http://marc.info/?t=126466700200002&r=1&w=2
Modified: active/CVE-2010-0309
===================================================================
--- active/CVE-2010-0309 2010-02-05 04:10:52 UTC (rev 1713)
+++ active/CVE-2010-0309 2010-02-05 04:11:00 UTC (rev 1714)
@@ -1,5 +1,6 @@
Candidate: CVE-2010-0309
Description:
+ kvm pit_ioport_read denial-of-service
References:
https://bugzilla.redhat.com/show_bug.cgi?id=560887
Notes:
@@ -7,7 +8,7 @@
upstream:
2.6.32-upstream-stable:
linux-2.6:
-2.6.18-etch-security:
-2.6.24-etch-security:
+2.6.18-etch-security: N/A "kvm introduced in 2.6.25"
+2.6.24-etch-security: N/A "kvm introduced in 2.6.25"
2.6.26-lenny-security:
2.6.32-squeeze-security:
Modified: active/CVE-2010-0410
===================================================================
--- active/CVE-2010-0410 2010-02-05 04:10:52 UTC (rev 1713)
+++ active/CVE-2010-0410 2010-02-05 04:11:00 UTC (rev 1714)
@@ -1,5 +1,6 @@
Candidate: CVE-2010-0410
Description:
+ kernel out-of-memory crash in drivers/connector
References:
http://www.openwall.com/lists/oss-security/2010/02/03/1
Notes:
More information about the kernel-sec-discuss
mailing list