[kernel-sec-discuss] r1727 - active

Dann Frazier dannf at alioth.debian.org
Thu Feb 11 23:49:09 UTC 2010 

Author: dannf
Date: 2010-02-11 23:49:09 +0000 (Thu, 11 Feb 2010)
New Revision: 1727

Modified:
   active/CVE-2009-3939
   active/CVE-2009-4027
   active/CVE-2009-4536
   active/CVE-2009-4538
   active/CVE-2010-0003
   active/CVE-2010-0007
   active/CVE-2010-0291
   active/CVE-2010-0307
   active/CVE-2010-0309
   active/CVE-2010-0410
   active/CVE-2010-0415
Log:
debian updates

Modified: active/CVE-2009-3939
===================================================================
--- active/CVE-2009-3939	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2009-3939	2010-02-11 23:49:09 UTC (rev 1727)
@@ -11,8 +11,8 @@
 Bugs: #562975 (patch available)
 upstream: released (2.6.32.5, 2.6.33-rc4)
 2.6.32-upstream-stable: released (2.6.32.5) [94249e60370f0094831ba673881222252d799257)]
-linux-2.6: pending (2.6.32-6) [bugfix/all/stable/2.6.32.5.patch]
+linux-2.6: released (2.6.32-6) [bugfix/all/stable/2.6.32.5.patch]
 2.6.18-etch-security: N/A "introduced in 2.6.25 commit ad84db2e"
 2.6.24-etch-security: N/A "introduced in 2.6.25 commit ad84db2e"
-2.6.26-lenny-security: pending (2.6.26-21lenny1) [bugfix/all/megaraid_sas-remove-sysfs-poll_mode_io-world-writeable-perms.patch]
-2.6.32-squeeze-security: pending (2.6.32-6) [bugfix/all/stable/2.6.32.5.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny1) [bugfix/all/megaraid_sas-remove-sysfs-poll_mode_io-world-writeable-perms.patch]
+2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/stable/2.6.32.5.patch]

Modified: active/CVE-2009-4027
===================================================================
--- active/CVE-2009-4027	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2009-4027	2010-02-11 23:49:09 UTC (rev 1727)
@@ -9,5 +9,5 @@
 linux-2.6: released (2.6.32-1)
 2.6.18-etch-security: N/A "introduced in 2.6.26 commit d92684e6"
 2.6.24-etch-security: N/A "introduced in 2.6.26 commit d92684e6"
-2.6.26-lenny-security: pending (2.6.26-21lenny1) [bugfix/all/mac80211-fix-spurious-delBA-handling.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny1) [bugfix/all/mac80211-fix-spurious-delBA-handling.patch]
 2.6.32-squeeze-security: released (2.6.32-1)

Modified: active/CVE-2009-4536
===================================================================
--- active/CVE-2009-4536	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2009-4536	2010-02-11 23:49:09 UTC (rev 1727)
@@ -12,5 +12,5 @@
 linux-2.6: released (2.6.32-6) [bugfix/all/e1000-enhance-frame-fragment-detection.patch]
 2.6.18-etch-security:
 2.6.24-etch-security: pending (2.6.24-6~etchnhalf.9etch2) [bugfix/all/e1000-enhance-frame-fragment-detection.patch]
-2.6.26-lenny-security: pending (2.6.26-21lenny1) [bugfix/all/e1000-enhance-frame-fragment-detection.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny1) [bugfix/all/e1000-enhance-frame-fragment-detection.patch]
 2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/e1000-enhance-frame-fragment-detection.patch]

Modified: active/CVE-2009-4538
===================================================================
--- active/CVE-2009-4538	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2009-4538	2010-02-11 23:49:09 UTC (rev 1727)
@@ -12,5 +12,5 @@
 linux-2.6: released (2.6.32-6) [bugfix/all/e1000e-enhance-fragment-detection.patch]
 2.6.18-etch-security:
 2.6.24-etch-security: pending (2.6.24-6~etchnhalf.9etch2) [bugfix/all/e1000e-enhance-frame-fragment-detection.patch]
-2.6.26-lenny-security: pending (2.6.26-21lenny1) [bugfix/all/e1000e-enhance-frame-fragment-detection.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny1) [bugfix/all/e1000e-enhance-frame-fragment-detection.patch]
 2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/e1000e-enhance-fragment-detection.patch]

Modified: active/CVE-2010-0003
===================================================================
--- active/CVE-2010-0003	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2010-0003	2010-02-11 23:49:09 UTC (rev 1727)
@@ -7,8 +7,8 @@
 Bugs:
 upstream: released (2.6.33-rc4) [b45c6e76bc]
 2.6.32-upstream-stable: released (2.6.32.4)
-linux-2.6: pending (2.6.32-6)
+linux-2.6: released (2.6.32-6) [bugfix/all/stable/2.6.32.4.patch]
 2.6.18-etch-security:
 2.6.24-etch-security: pending (2.6.24-6~etchnhalf.9etch2) [bugfix/all/signal-fix-information-leak-with-print-fatal-signals.patch]
-2.6.26-lenny-security: pending (2.6.26-21lenny1) [bugfix/all/signal-fix-information-leak-with-print-fatal-signals.patch]
-2.6.32-squeeze-security: pending (2.6.32-6)
+2.6.26-lenny-security: released (2.6.26-21lenny1) [bugfix/all/signal-fix-information-leak-with-print-fatal-signals.patch]
+2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/stable/2.6.32.4.patch]

Modified: active/CVE-2010-0007
===================================================================
--- active/CVE-2010-0007	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2010-0007	2010-02-11 23:49:09 UTC (rev 1727)
@@ -6,8 +6,8 @@
 Bugs:
 upstream: released (2.6.33-rc4) [dce766a]
 2.6.32-upstream-stable: released (2.6.32.4)
-linux-2.6: pending (2.6.32-6)
+linux-2.6: released (2.6.32-6) [bugfix/all/stable/2.6.32.4.patch]
 2.6.18-etch-security:
 2.6.24-etch-security: pending (2.6.24-6~etchnhalf.9etch2) [bugfix/all/netfilter-ebtables-enforce-CAP_NET_ADMIN.patch]
-2.6.26-lenny-security: pending (2.6.26-21lenny1) [bugfix/all/netfilter-ebtables-enforce-CAP_NET_ADMIN.patch]
-2.6.32-squeeze-security: pending (2.6.32-6)
+2.6.26-lenny-security: released (2.6.26-21lenny1) [bugfix/all/netfilter-ebtables-enforce-CAP_NET_ADMIN.patch]
+2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/stable/2.6.32.4.patch]

Modified: active/CVE-2010-0291
===================================================================
--- active/CVE-2010-0291	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2010-0291	2010-02-11 23:49:09 UTC (rev 1727)
@@ -13,5 +13,5 @@
 linux-2.6: released (2.6.32-6) [bugfix/all/stable/2.6.32.4.patch]
 2.6.18-etch-security:
 2.6.24-etch-security:
-2.6.26-lenny-security: pending (2.6.26-21lenny3) [bugfix/all/untangle-the-do_mremap-mess.patch, bugfix/all/untangle-the-do_mremap-mess-ppc64-fix.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny3) [bugfix/all/untangle-the-do_mremap-mess.patch, bugfix/all/untangle-the-do_mremap-mess-ppc64-fix.patch, bugfix/all/untangle-the-do_mremap-mess-xen.patch]
 2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/stable/2.6.32.4.patch]

Modified: active/CVE-2010-0307
===================================================================
--- active/CVE-2010-0307	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2010-0307	2010-02-11 23:49:09 UTC (rev 1727)
@@ -9,8 +9,8 @@
 Bugs:
 upstream: released (2.6.33-rc6) [221af7f87b97431e3ee21ce4b0e77d5411cf1549]
 2.6.32-upstream-stable:
-linux-2.6: pending (2.6.32-8) [bugfix/all/split-flush_old_exec-into-two-functions.patch, bugfix/all/Fix-flush_old_exec-setup_new_exec-split.patch, bugfix/x86/x86-get-rid-of-the-insane-tif_abi_pending-bit.patch, bugfix/powerpc/powerpc-tif_abi_pending-bit-removal.patch, bugfix/sparc/sparc-tif_abi_pending-bit-removal.patch]
+linux-2.6: released (2.6.32-8) [bugfix/all/split-flush_old_exec-into-two-functions.patch, bugfix/all/Fix-flush_old_exec-setup_new_exec-split.patch, bugfix/x86/x86-get-rid-of-the-insane-tif_abi_pending-bit.patch, bugfix/powerpc/powerpc-tif_abi_pending-bit-removal.patch, bugfix/sparc/sparc-tif_abi_pending-bit-removal.patch]
 2.6.18-etch-security:
 2.6.24-etch-security:
-2.6.26-lenny-security: pending (2.6.26-21lenny2) [bugfix/all/split-flush_old_exec-into-two-functions.patch, bugfix/x86/get-rid-of-TIF_ABI_PENDING-bit.patch, bugfix/powerpc/powerpc-tif_abi_pending-bit-removal.patch bugfix/sparc/sparc-tif_abi_pending-bit-removal.patch]
-2.6.32-squeeze-security: pending (2.6.32-8) [bugfix/all/split-flush_old_exec-into-two-functions.patch, bugfix/all/Fix-flush_old_exec-setup_new_exec-split.patch, bugfix/x86/x86-get-rid-of-the-insane-tif_abi_pending-bit.patch, bugfix/powerpc/powerpc-tif_abi_pending-bit-removal.patch, bugfix/sparc/sparc-tif_abi_pending-bit-removal.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny2) [bugfix/all/split-flush_old_exec-into-two-functions.patch, bugfix/x86/get-rid-of-TIF_ABI_PENDING-bit.patch, bugfix/powerpc/powerpc-tif_abi_pending-bit-removal.patch bugfix/sparc/sparc-tif_abi_pending-bit-removal.patch, features/all/openvz/remove-TIF_ABI-bit.patch, features/all/xen/get-rid-of-TIF_ABI_PENDING-bit.patch]
+2.6.32-squeeze-security: released (2.6.32-8) [bugfix/all/split-flush_old_exec-into-two-functions.patch, bugfix/all/Fix-flush_old_exec-setup_new_exec-split.patch, bugfix/x86/x86-get-rid-of-the-insane-tif_abi_pending-bit.patch, bugfix/powerpc/powerpc-tif_abi_pending-bit-removal.patch, bugfix/sparc/sparc-tif_abi_pending-bit-removal.patch]

Modified: active/CVE-2010-0309
===================================================================
--- active/CVE-2010-0309	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2010-0309	2010-02-11 23:49:09 UTC (rev 1727)
@@ -5,10 +5,10 @@
  https://bugzilla.redhat.com/show_bug.cgi?id=560887
 Notes:
 Bugs:
-upstream: needed
+upstream: pending (2.6.33-rc8) [ee73f65]
 2.6.32-upstream-stable: needed
-linux-2.6: pending (2.6.32-8) [bugfix/x86/kvm-pit-control-word-is-write-only.patch]
+linux-2.6: released (2.6.32-8) [bugfix/x86/kvm-pit-control-word-is-write-only.patch]
 2.6.18-etch-security: N/A "no kvm"
 2.6.24-etch-security: N/A "code no present"
-2.6.26-lenny-security: pending (2.6.26-21lenny3) [bugfix/x86/kvm-pit-control-word-is-write-only.patch]
-2.6.32-squeeze-security: pending (2.6.32-8) [bugfix/x86/kvm-pit-control-word-is-write-only.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny3) [bugfix/x86/kvm-pit-control-word-is-write-only.patch]
+2.6.32-squeeze-security: released (2.6.32-8) [bugfix/x86/kvm-pit-control-word-is-write-only.patch]

Modified: active/CVE-2010-0410
===================================================================
--- active/CVE-2010-0410	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2010-0410	2010-02-11 23:49:09 UTC (rev 1727)
@@ -5,10 +5,10 @@
  http://www.openwall.com/lists/oss-security/2010/02/03/1
 Notes:
 Bugs:
-upstream: pending [f98bfbd78c37c5946cc53089da32a5f741efdeb7]
+upstream: released (2.6.33-rc7) [f98bfbd78c37c5946cc53089da32a5f741efdeb7]
 2.6.32-upstream-stable: pending (2.6.32.8)
-linux-2.6: pending (2.6.32-8) [bugfix/all/connector-delete-buggy-notification-code.patch]
+linux-2.6: released (2.6.32-8) [bugfix/all/connector-delete-buggy-notification-code.patch]
 2.6.18-etch-security:
 2.6.24-etch-security:
-2.6.26-lenny-security: pending (2.6.26-21lenny3) [bugfix/all/connector-delete-buggy-notification-code.patch]
-2.6.32-squeeze-security: pending (2.6.32-8) [bugfix/all/connector-delete-buggy-notification-code.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny3) [bugfix/all/connector-delete-buggy-notification-code.patch]
+2.6.32-squeeze-security: released (2.6.32-8) [bugfix/all/connector-delete-buggy-notification-code.patch]

Modified: active/CVE-2010-0415
===================================================================
--- active/CVE-2010-0415	2010-02-11 22:35:45 UTC (rev 1726)
+++ active/CVE-2010-0415	2010-02-11 23:49:09 UTC (rev 1727)
@@ -6,8 +6,8 @@
 Bugs:
 upstream: released (2.6.33-rc7) [6f5a55f]
 2.6.32-upstream-stable:
-linux-2.6: pending (2.6.32-8) [bugfix/all/fix-potential-crash-with-sys_move_pages.patch]
+linux-2.6: released (2.6.32-8) [bugfix/all/fix-potential-crash-with-sys_move_pages.patch]
 2.6.18-etch-security:
 2.6.24-etch-security:
-2.6.26-lenny-security: pending (2.6.26-21lenny3) [bugfix/all/fix-potential-crash-with-sys_move_pages.patch]
-2.6.32-squeeze-security: pending (2.6.32-8) [bugfix/all/fix-potential-crash-with-sys_move_pages.patch]
+2.6.26-lenny-security: released (2.6.26-21lenny3) [bugfix/all/fix-potential-crash-with-sys_move_pages.patch]
+2.6.32-squeeze-security: released (2.6.32-8) [bugfix/all/fix-potential-crash-with-sys_move_pages.patch]

More information about the kernel-sec-discuss mailing list